4da165873fa65aa8270b59589b6634670d06cf0635206d86c25f0ee4a42dde74

Sharing

Copy URL Twitter E-mail

General

Target

4da165873fa65aa8270b59589b6634670d06cf0635206d86c25f0ee4a42dde74
Size

988KB
MD5

90421593d132962d1643d30d6ce19ac0
SHA1

26174cd86405caef613976e07b43a840d75a7ac8
SHA256

4da165873fa65aa8270b59589b6634670d06cf0635206d86c25f0ee4a42dde74
SHA512

3aacd5967f25b4c72cafa237d9ce351470b6029bd31b4013d9b9122e5a2db4b0127faa236f5e054754ac6d158fc38f7c3e04dc31ad544946966c5c7922ca84ae
SSDEEP

24576:wqq7CicB7rcv9EMNoIztqZjQtwvHMwbwF46U84:chHveM6IztKcaHMwbwF46U8

Score

N/A

Malware Config

Signatures

Files

4da165873fa65aa8270b59589b6634670d06cf0635206d86c25f0ee4a42dde74
.exe windows x86

d6e91bd4f6167b8558efd4914a1235f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
GetPrivateProfileStringA
OutputDebugStringA
GetTickCount
DeleteFileA
RemoveDirectoryA
SetEndOfFile
GetLocaleInfoW
SetEnvironmentVariableA
EnterCriticalSection
LeaveCriticalSection
MulDiv
GetProcAddress
SetUnhandledExceptionFilter
GetCurrentProcess
GetModuleFileNameA
LoadLibraryA
FreeLibrary
VirtualQuery
QueryPerformanceCounter
QueryPerformanceFrequency
SetThreadPriority
GetCurrentThread
InitializeCriticalSection
DeleteCriticalSection
FindClose
FindFirstFileA
Sleep
FindNextFileA
GetVersionExA
IsBadWritePtr
GetLastError
GetCurrentThreadId
SetErrorMode
MultiByteToWideChar
GlobalUnlock
GlobalLock
GlobalAlloc
GetWindowsDirectoryA
GetModuleHandleA
CreateMutexA
GetCommandLineA
CloseHandle
InterlockedIncrement
InterlockedDecrement
GetFileTime
CreateFileA
WideCharToMultiByte
GetLocaleInfoA
RaiseException
RtlUnwind
IsBadReadPtr
GetSystemTimeAsFileTime
GetStartupInfoA
ExitProcess
HeapFree
GetDriveTypeA
GetCurrentDirectoryA
GetFullPathNameA
HeapReAlloc
HeapAlloc
ExitThread
TlsSetValue
TlsGetValue
ResumeThread
CreateThread
TerminateProcess
LCMapStringA
LCMapStringW
GetCPInfo
GetTimeFormatA
GetDateFormatA
CompareStringA
CompareStringW
GetStringTypeA
GetStringTypeW
ReadFile
WriteFile
TlsFree
SetLastError
TlsAlloc
HeapSize
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetCurrentProcessId
VirtualAlloc
FlushFileBuffers
SetFilePointer
VirtualProtect
GetSystemInfo
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
IsBadCodePtr
SetStdHandle
GetACP
GetOEMCP
SetCurrentDirectoryA

advapi32

RegCloseKey
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyA

winmm

mixerGetLineControlsA
timeGetTime
timeBeginPeriod
mixerClose
mixerGetControlDetailsA
mixerGetLineInfoA
mixerGetDevCapsA
mixerOpen
mixerSetControlDetails
timeEndPeriod

wsock32

select
WSACleanup
closesocket
htons
recv
send
WSAGetLastError
gethostbyname
ioctlsocket
connect
__WSAFDIsSet
WSAStartup
inet_ntoa
socket

user32

GetDC
DrawTextExA
OffsetRect
MoveWindow
GetWindowRect
SystemParametersInfoA
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
DefWindowProcA
EndPaint
DrawTextA
FillRect
BeginPaint
SetFocus
GetFocus
GetWindowLongA
MessageBoxA
AdjustWindowRect
GetDesktopWindow
DestroyWindow
GetWindowTextA
ShowWindow
SendMessageA
SetTimer
ReleaseDC
CreateWindowExA
RegisterClassA
LoadIconA
LoadCursorA
GetSysColor
SetWindowTextA
GetSysColorBrush
SetCursor
ScreenToClient
GetCursorPos
CloseClipboard
SetClipboardData
OpenClipboard
ReleaseCapture
SetCapture
WindowFromPoint
PeekMessageA
GetClipboardData
GetWindowPlacement
CloseWindow
SetForegroundWindow
GetSystemMetrics
CreateCursor
PostMessageA
RegisterWindowMessageA
DestroyCursor
GetClientRect
ClientToScreen
SetWindowLongA

gdi32

GetObjectA
CreateFontIndirectA
SelectObject
CreateSolidBrush
SetBkMode
IntersectClipRect
SetTextColor
TextOutA
GetDeviceCaps
CreateFontA
GetTextMetricsA
DeleteObject

shell32

ShellExecuteA

ole32

CoCreateInstance
CoInitialize

oleaut32

SysAllocString
SysFreeString

Sections

.text
Size: 784KB - Virtual size: 780KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

��ܣuq
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d6e91bd4f6167b8558efd4914a1235f8

Headers

File Characteristics

Imports

kernel32

advapi32

winmm

wsock32

user32

gdi32

shell32

ole32

oleaut32

Sections

.text Size: 784KB - Virtual size: 780KB

.rdata Size: 148KB - Virtual size: 147KB

.data Size: 24KB - Virtual size: 248KB

.rsrc Size: 8KB - Virtual size: 4KB

��ܣuq Size: 20KB - Virtual size: 20KB

.text
Size: 784KB - Virtual size: 780KB

.rdata
Size: 148KB - Virtual size: 147KB

.data
Size: 24KB - Virtual size: 248KB

.rsrc
Size: 8KB - Virtual size: 4KB

��ܣuq
Size: 20KB - Virtual size: 20KB