61404269907ca324df899255a9a5f87098b4a3700bb74e6902720c4740a7131e

Sharing

Copy URL

Twitter E-mail

General

Target

61404269907ca324df899255a9a5f87098b4a3700bb74e6902720c4740a7131e
Size

232KB
MD5

a08fec828e88beba2737ed1712b35430
SHA1

709373156d6976a299bfe814bd36b3b2e4e365b4
SHA256

61404269907ca324df899255a9a5f87098b4a3700bb74e6902720c4740a7131e
SHA512

e77f06b934bf1205d0abdc4121b2d0301583b639929878fe6511ee0ca62b7dc9b8adac6b6d192687fea53d741e759abb19842140e50e64de2767b4ffb4ed5793
SSDEEP

3072:6tsV3+c+7u4pmqV54xSJFlJKlJtVzcF8fy5GQQ9sz/FgobLt:JtoQqvZwwF865rLt

Score

N/A

Malware Config

Signatures

Files

61404269907ca324df899255a9a5f87098b4a3700bb74e6902720c4740a7131e
.exe windows x86

888e36d0b835354ddd06e7c633a6c463

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
FileTimeToSystemTime
CreateEventA
CreateMutexA
TerminateThread
WaitForSingleObject
ReleaseMutex
FindCloseChangeNotification
FindNextChangeNotification
Sleep
FindFirstChangeNotificationA
CreateThread
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
MultiByteToWideChar
CreateProcessA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetTickCount
HeapSize
HeapReAlloc
VirtualAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
InterlockedDecrement
WriteFile
CloseHandle
HeapFree
GetProcessHeap
HeapAlloc
lstrcatA
FindFirstFileA
LoadLibraryA
GetProcAddress
GetFullPathNameA
lstrlenA
FreeLibrary
FindNextFileA
FindClose
GetModuleHandleA
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetLastError
GetModuleFileNameA
lstrcmpiA
GetCommandLineA
lstrcpyA
GetLocaleInfoA
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
ExitProcess
GetModuleHandleW
RtlUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter

user32

SendMessageA
FindWindowA
DrawTextA
GetSystemMetrics
GetTabbedTextExtentA
MessageBoxA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
LoadIconA
RegisterClassA
CreateWindowExA
ShowWindow
SetForegroundWindow
UpdateWindow
GetMessageA
MsgWaitForMultipleObjects
PeekMessageA
DispatchMessageA
DestroyWindow
UnregisterClassA
LoadCursorA
SetCursor
InvalidateRect
MoveWindow
BeginPaint
IsIconic
EndPaint
ShowCursor
DefWindowProcA
wsprintfA
GetDC
ReleaseDC

gdi32

GetDeviceCaps
StretchDIBits
EndPage
StartDocA
EndDoc
GetStockObject
SetDIBits
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateFontA
SelectObject
SetBkMode
DeleteObject
SetTextColor
GdiSetBatchLimit
StartPage

shlwapi

PathRemoveExtensionA
StrStrA
PathAddBackslashA
PathRemoveFileSpecA
PathFindFileNameA
PathFindExtensionA
PathAppendA

comdlg32

PrintDlgA

comctl32

ord17

ole32

CoInitialize

rp_shared

GetLangStr
RPMessageBox
RunProcess

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

888e36d0b835354ddd06e7c633a6c463

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shlwapi

comdlg32

comctl32

ole32

rp_shared

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 3KB - Virtual size: 14KB

.rsrc Size: 69KB - Virtual size: 69KB

.text Size: 108KB - Virtual size: 112KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 3KB - Virtual size: 14KB

.rsrc
Size: 69KB - Virtual size: 69KB

.text
Size: 108KB - Virtual size: 112KB