0bfee98c50f888dc1f909d66ab4e588a27f369f62c926464ad968078407b7188

Sharing

Copy URL Twitter E-mail

General

Target

0bfee98c50f888dc1f909d66ab4e588a27f369f62c926464ad968078407b7188
Size

542KB
MD5

416d80eedcd8702a7785d789efb7d1c6
SHA1

051c7efe3ad1cbcb5c7e8fa32b11598fb843c7f5
SHA256

0bfee98c50f888dc1f909d66ab4e588a27f369f62c926464ad968078407b7188
SHA512

34ed3689c316c26b14005a5447e791a1b8969b525572d6ccff36604ca02d8cbc6bfbd777c29e70694521d399a063b1750fa40c59e14522f553eac497c7e16056
SSDEEP

12288:w1NPHD7NHqDtfyexuT1VbfAb/aW5dkOM3ov:w1NsaexCu/aW5dkOMY

Score

N/A

Malware Config

Signatures

Files

0bfee98c50f888dc1f909d66ab4e588a27f369f62c926464ad968078407b7188
.exe windows x86

4aaf7d9021cbe8809130b48e77ff6b48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

RegisterClassExA
MessageBoxW
RegisterClassA
LoadAcceleratorsA
CreateIconFromResource
CharPrevExA
GetWindowModuleFileNameW
InvertRect
CreateIcon
CheckDlgButton
DdeQueryNextServer
LoadIconW
CharUpperA
PaintDesktop

wininet

HttpQueryInfoA

kernel32

CreateMutexA
lstrlenW
QueryPerformanceCounter
GetConsoleOutputCP
FreeEnvironmentStringsW
GetConsoleMode
GetModuleHandleA
InterlockedIncrement
GetFileType
UnlockFile
SetFilePointer
TlsSetValue
CreateFileA
GetPrivateProfileStringW
GetProcAddress
CreateMailslotA
FreeEnvironmentStringsA
GetDateFormatA
GetLocaleInfoA
GetOEMCP
SetHandleCount
GetCurrentThreadId
ReadFile
SetUnhandledExceptionFilter
GetVersionExA
GetTimeFormatA
HeapAlloc
EnumResourceLanguagesW
InitializeCriticalSection
DeleteCriticalSection
WriteFile
GetCurrentProcessId
IsDebuggerPresent
TerminateProcess
HeapReAlloc
VirtualQuery
InterlockedDecrement
SetConsoleCtrlHandler
GetEnvironmentStringsW
FlushViewOfFile
EnumResourceTypesW
LeaveCriticalSection
OpenMutexA
GetStartupInfoA
VirtualAlloc
GetCurrentThread
CompareStringA
SetEnvironmentVariableA
MultiByteToWideChar
WriteConsoleA
FreeLibrary
TlsFree
FlushFileBuffers
Sleep
TlsAlloc
GetTimeZoneInformation
LocalShrink
HeapDestroy
GetStringTypeW
GetLastError
GetUserDefaultLCID
CompareStringW
GetCommandLineA
GetStringTypeA
GetTickCount
GetCurrentProcess
SetThreadAffinityMask
GetCPInfo
LCMapStringW
VirtualFree
GetModuleFileNameA
GetLocaleInfoW
GetProcessHeap
GetStdHandle
HeapFree
InterlockedExchange
RtlUnwind
SetStdHandle
LoadLibraryA
EnterCriticalSection
CloseHandle
SetLastError
TlsGetValue
GetACP
EnumSystemLocalesA
WriteFileEx
UnhandledExceptionFilter
GetConsoleCP
HeapCreate
GetSystemTimeAsFileTime
LCMapStringA
IsValidLocale
IsValidCodePage
WriteConsoleW
ExitProcess
GetThreadContext
GetEnvironmentStrings
WideCharToMultiByte
HeapSize

comdlg32

GetFileTitleA

Sections

.text
Size: 339KB - Virtual size: 339KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4aaf7d9021cbe8809130b48e77ff6b48

Headers

File Characteristics

Imports

comctl32

user32

wininet

kernel32

comdlg32

Sections

.text Size: 339KB - Virtual size: 339KB

.rdata Size: 70KB - Virtual size: 98KB

.data Size: 116KB - Virtual size: 115KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 339KB - Virtual size: 339KB

.rdata
Size: 70KB - Virtual size: 98KB

.data
Size: 116KB - Virtual size: 115KB

.rsrc
Size: 15KB - Virtual size: 15KB