940c7fcd07d479740034ac8f1853efa69533ed51fbbe9ce17bb32b9d69dc6e22

Sharing

Copy URL Twitter E-mail

General

Target

940c7fcd07d479740034ac8f1853efa69533ed51fbbe9ce17bb32b9d69dc6e22
Size

485KB
MD5

8066c8b6a75790ce94c88bcc6507a607
SHA1

f735cbddc81e2939ba2b8f96434d905d1e7f1c39
SHA256

940c7fcd07d479740034ac8f1853efa69533ed51fbbe9ce17bb32b9d69dc6e22
SHA512

d8d293d33867c8cdbd4e904ddf4aff47b7ad687dac31e3be390ead75cfca37a94946a9b4ac9e34c5b04bd5ee269757f2689d22d305b9c3200994dfd61ad2e2dd
SSDEEP

12288:SdWJf1ybgFtEyflQjnoRqxQfcCxGswlEWblv:SwJf1ybdyfaoefswlEWbl

Score

N/A

Malware Config

Signatures

Files

940c7fcd07d479740034ac8f1853efa69533ed51fbbe9ce17bb32b9d69dc6e22
.exe windows x86

c2c7c4ff1e56aa1779590080f35d6e65

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateDIBPatternBrush
GetPixel
SetViewportExtEx
PlayEnhMetaFile
GetFontData
GetLogColorSpaceW
CancelDC
CreateRectRgn
SetPaletteEntries
GetTextExtentExPointW
GetStockObject
GetMetaFileW
SetMapperFlags
GetEnhMetaFileHeader

shell32

ShellExecuteExW
SHFormatDrive
SHInvokePrinterCommandA
ShellExecuteW
SHGetSettings

kernel32

GetCurrentProcess
TerminateProcess
GetStdHandle
SetLastError
TlsFree
VirtualFree
HeapDestroy
Sleep
EnumTimeFormatsA
InterlockedIncrement
GetLocaleInfoA
GetModuleFileNameA
LCMapStringA
HeapFree
SuspendThread
GetProcessHeap
ReadConsoleOutputW
VirtualAlloc
FreeEnvironmentStringsA
GetFileType
GetTimeZoneInformation
LeaveCriticalSection
HeapAlloc
SetEnvironmentVariableA
GetLocaleInfoW
ReadConsoleOutputCharacterA
TlsGetValue
EnterCriticalSection
GetSystemTimeAsFileTime
GetACP
ExitProcess
InterlockedExchange
UnhandledExceptionFilter
GetCurrentProcessId
WriteFile
InitializeCriticalSection
GetStringTypeA
SetHandleCount
IsDebuggerPresent
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetComputerNameA
GetTickCount
DeleteFileW
HeapSize
HeapCreate
MultiByteToWideChar
GetUserDefaultLCID
SetUnhandledExceptionFilter
RtlUnwind
DeleteCriticalSection
TlsSetValue
GetProcAddress
WideCharToMultiByte
LCMapStringW
GetVersionExA
GetModuleHandleA
FreeLibrary
GetStringTypeW
IsValidCodePage
CompareStringW
GetEnvironmentStrings
GetDateFormatA
SetConsoleCtrlHandler
HeapReAlloc
IsValidLocale
LoadLibraryA
TlsAlloc
GetCalendarInfoA
QueryPerformanceCounter
GetTimeFormatA
EnumSystemLocalesA
GetCommandLineA
GetCPInfo
GetCurrentThreadId
GetLastError
GetOEMCP
GetStartupInfoA
InterlockedDecrement
VirtualQuery
GetCurrentThread
FindFirstFileW
CompareStringA

wininet

HttpOpenRequestA
FtpGetCurrentDirectoryA

user32

EqualRect
FrameRect
OpenClipboard
KillTimer
BringWindowToTop
ShowWindowAsync
DeferWindowPos
CharUpperBuffA
DdeKeepStringHandle

advapi32

RevertToSelf
RegCloseKey
RegEnumValueW
LookupAccountNameA
LookupSecurityDescriptorPartsA
RegCreateKeyA
RegLoadKeyA
RegQueryValueExA
RegLoadKeyW
RegCreateKeyExW
RegSetValueW
RegSetKeySecurity
RegRestoreKeyA
LookupPrivilegeNameW

Sections

.text
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 323KB - Virtual size: 323KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2c7c4ff1e56aa1779590080f35d6e65

Headers

File Characteristics

Imports

gdi32

shell32

kernel32

wininet

user32

advapi32

Sections

.text Size: 145KB - Virtual size: 144KB

.rdata Size: 9KB - Virtual size: 32KB

.data Size: 323KB - Virtual size: 323KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 145KB - Virtual size: 144KB

.rdata
Size: 9KB - Virtual size: 32KB

.data
Size: 323KB - Virtual size: 323KB

.rsrc
Size: 6KB - Virtual size: 6KB