05215df9e3ae7571465957757151ce1a5b971ccc42fc75122d3a0b6336ef4954

Sharing

Copy URL

Twitter E-mail

General

Target

05215df9e3ae7571465957757151ce1a5b971ccc42fc75122d3a0b6336ef4954
Size

144KB
MD5

960c7973d634f18a16abd5480ef0e995
SHA1

dcf48acc48d8b419169d8f14d72d15fd7077746b
SHA256

05215df9e3ae7571465957757151ce1a5b971ccc42fc75122d3a0b6336ef4954
SHA512

f746f171122fe8168f188f067cbd2323af362b9a37554cdc3544c6758fa648c4494d6186eb7e24618d2578d9455b03b6816e4b061e3dbdf1476e3ad7a3348e27
SSDEEP

3072:hGq8aX6X/AVHK4buyianNpf+NVZe1eZan12YMt9TEGB:fnKXqHLuynTf+NVZha1JMtZ

Score

N/A

Malware Config

Signatures

Files

05215df9e3ae7571465957757151ce1a5b971ccc42fc75122d3a0b6336ef4954
.exe windows x86

b8775b03292efae1a423d96c64ca285f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

ord29

kernel32

GetOEMCP
ContinueDebugEvent
EnumResourceNamesA
GetStringTypeW
ScrollConsoleScreenBufferA
OutputDebugStringA
GetModuleFileNameA
GetPrivateProfileSectionW
AddConsoleAliasA
GetSystemTime
lstrcpyW
SetFileAttributesW
SetEnvironmentVariableA
QueryDosDeviceW
FindFirstVolumeMountPointW
CreateFileMappingW
GetConsoleScreenBufferInfo
ProcessIdToSessionId
GetDiskFreeSpaceW
DefineDosDeviceA
LocalLock
GetProcAddress
GetThreadLocale
lstrcmpiA
GetLastError
FillConsoleOutputCharacterW
FindFirstFileA
GetConsoleAliasesW
GetPrivateProfileIntW
WritePrivateProfileStringW
ExitThread
lstrcatA
GetSystemDirectoryA
GetBinaryTypeA
CreateProcessA
FindNextVolumeW
GetExitCodeProcess
SetVolumeMountPointA
GetCommandLineW
CreateEventA
Sleep
GetLocaleInfoW
TerminateThread
GetPrivateProfileIntA
EnumResourceTypesA
VirtualQueryEx
FormatMessageA
ReadConsoleW
GetNumberFormatA
IsBadReadPtr
GetConsoleAliasesA
GetTickCount
OutputDebugStringW
SetThreadExecutionState
GetUserDefaultLCID
GetProfileStringW
GetEnvironmentStringsW
QueryPerformanceCounter
WritePrivateProfileSectionA
GetLogicalDriveStringsW
CompareFileTime
GetCurrentProcess
MoveFileExW
HeapAlloc
GetConsoleAliasExesLengthA
lstrcpynA
GlobalCompact
MapViewOfFile
SetThreadContext
FindFirstFileW
CreateMutexW
CreateFileA
EnumResourceNamesW
PulseEvent
GetEnvironmentVariableW
GetFullPathNameA
GetWindowsDirectoryW

user32

GetNextDlgTabItem
SwapMouseButton
GetUserObjectInformationA
InvertRect
GetClassNameA
CharUpperBuffW
PostThreadMessageA
SendDlgItemMessageA
CharNextW
RegisterWindowMessageW
FillRect
GetClassInfoExA
UnregisterClassW
DdeDisconnectList
TabbedTextOutW
DialogBoxIndirectParamW
DialogBoxParamW
LoadMenuA
CallNextHookEx
CopyAcceleratorTableA
SetParent
CreateMenu
DrawEdge
GetMenuItemInfoW
GetClassInfoW
DrawTextExA
GetForegroundWindow
GetMenu
IsDialogMessageW
GetWindowTextA
OpenWindowStationA
IsCharAlphaNumericW
SetWindowLongA
FlashWindowEx
CreateAcceleratorTableA
GetDCEx
CharUpperW
DdeConnectList
SendMessageTimeoutA
GetMenuItemInfoA
CreatePopupMenu
IsCharLowerW
IsDlgButtonChecked
GetActiveWindow
CreateCaret
FindWindowExW
BeginDeferWindowPos
GetSystemMetrics
IsWindowVisible
AllowSetForegroundWindow
SetWindowTextA
GetDlgItemTextW
SetClipboardData
FindWindowA
LoadCursorA
GetDlgItemTextA
SetUserObjectInformationA
CallWindowProcW
DefFrameProcW
EndTask
DispatchMessageW
EnableMenuItem

gdi32

CloseEnhMetaFile
CloseMetaFile
RestoreDC
GetStockObject
SetTextAlign
RoundRect
RectVisible
SetROP2
EnumFontFamiliesExW
GetTextMetricsA
CreatePen
Polyline
GetSystemPaletteEntries
GetCharWidth32A
GetNearestPaletteIndex
SetStretchBltMode
GetTextAlign
GetObjectW
SelectPalette
CreateFontW
StretchDIBits
GetCharWidth32W
EndPath
PtVisible
GetMapMode
Rectangle
CreateCompatibleBitmap
RectInRegion
CombineRgn
PlayEnhMetaFile
CreateRectRgnIndirect
CreateCompatibleDC
EnumFontFamiliesExA
SelectClipRgn
GetPaletteEntries
LineDDA
CreateBitmap
EnumMetaFile
PlayMetaFileRecord
GetEnhMetaFileHeader
GetRgnBox
SetDIBColorTable
SetBkColor
GetDIBits
CreateFontA
Polygon
GetBkMode
CreateHatchBrush
EnumFontsW
WidenPath
LPtoDP
CopyMetaFileA
GetTextExtentPoint32A
PlayMetaFile
GetTextMetricsW
GetTextExtentPoint32W
GetWindowOrgEx
TranslateCharsetInfo
GetLayout
BitBlt
SetLayout
AddFontResourceA
EnumFontFamiliesW
BeginPath
ExtTextOutA

Exports

Exports

?closeSec@@YGKPAK@Z
AmisrompcepeDreePinkWeenyuchpotos

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b8775b03292efae1a423d96c64ca285f

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 39KB - Virtual size: 39KB

.data Size: 66KB - Virtual size: 65KB

.rsrc Size: 5KB - Virtual size: 5KB

.init Size: 5KB - Virtual size: 4KB

.code Size: 21KB - Virtual size: 21KB

.reloc Size: 5KB - Virtual size: 5KB

.pdata Size: 512B - Virtual size: 2B

.text
Size: 39KB - Virtual size: 39KB

.data
Size: 66KB - Virtual size: 65KB

.rsrc
Size: 5KB - Virtual size: 5KB

.init
Size: 5KB - Virtual size: 4KB

.code
Size: 21KB - Virtual size: 21KB

.reloc
Size: 5KB - Virtual size: 5KB

.pdata
Size: 512B - Virtual size: 2B