31d9cb21c492cb0feee0dc08a3f445120bd80cf1584cedb4d40ac06083358471

Sharing

Copy URL Twitter E-mail

General

Target

31d9cb21c492cb0feee0dc08a3f445120bd80cf1584cedb4d40ac06083358471
Size

391KB
MD5

8023cc4c9eef5b8e36bfab977352093f
SHA1

9647a3dc64481cf9a18d4f9e0c5ac9c5101fea83
SHA256

31d9cb21c492cb0feee0dc08a3f445120bd80cf1584cedb4d40ac06083358471
SHA512

6dfa5aab45b71b1aff8a0241c96204d3c3479491d87427a64ba031ac70ab4c95585e85aa3936949b5ca660f0b3705ff71d5d843d66e9a611c536509bebd30664
SSDEEP

6144:VehwJBGDxEOwrBc+grjultlqOYHnruYtBDaoSqreuUIhQer3iKXUZj+gfLw:V1QE0RrjuzlqOAnaYtBDNSqSKSiC+gM

Score

N/A

Malware Config

Signatures

Files

31d9cb21c492cb0feee0dc08a3f445120bd80cf1584cedb4d40ac06083358471
.exe windows x86

bfa7da4fd1e6b7ef51c529d573e9018c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

LoadLibraryW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
LockResource
GetConsoleCP
GetConsoleMode
HeapSize
HeapReAlloc
FlushFileBuffers
LCMapStringW
MultiByteToWideChar
GetStringTypeW
SetStdHandle
WriteConsoleW
GetCommandLineA
GetWindowsDirectoryW
GetLastError
lstrcpyA
SetErrorMode
GetVolumeInformationA
FindResourceA
LoadResource
SizeofResource
HeapCreate
ExitProcess
GetProcAddress
SetLastError
GlobalMemoryStatusEx
CreateFileW
GetFileInformationByHandle
FileTimeToLocalFileTime
LoadLibraryA
FileTimeToSystemTime
GetModuleHandleA
RtlUnwind
HeapFree
Sleep
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
HeapAlloc
HeapSetInformation
GetStartupInfoW
EnterCriticalSection
LeaveCriticalSection
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
GetModuleHandleW
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
CloseHandle

user32

EnableWindow
CopyRect
FillRect
GetSystemMetrics
DrawFrameControl
GetDC
GetClientRect
ReleaseDC
CreateWindowExA
UpdateWindow
DestroyWindow
PostQuitMessage
SendMessageA
DispatchMessageA
DefWindowProcA
MapWindowPoints
GetCursorPos
PtInRect
WindowFromPoint
KillTimer
LoadMenuA
wsprintfA
GetDlgItem
IsDlgButtonChecked

gdi32

TextOutA
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
Rectangle
SetDCPenColor
GetTextMetricsA
GetObjectA
CreateDIBSection
GetCurrentObject
GetPaletteEntries
SetDIBColorTable
BitBlt
GetDIBColorTable
CreateBitmap
SelectPalette
EnumFontsA
CreateFontIndirectA
EndDoc
GetStockObject
SetViewportOrgEx

advapi32

IsValidSid
GetTokenInformation
AllocateAndInitializeSid
GetLengthSid
InitializeAcl
AddAccessAllowedAce
IsValidAcl
FreeSid
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
IsValidSecurityDescriptor

odbc32

ord24

psapi

GetPerformanceInfo

shlwapi

PathGetArgsA

secur32

GetUserNameExA

msi

ord101

Sections

.text
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfa7da4fd1e6b7ef51c529d573e9018c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

odbc32

psapi

shlwapi

secur32

msi

Sections

.text Size: 153KB - Virtual size: 152KB

.rdata Size: 138KB - Virtual size: 138KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 94KB - Virtual size: 94KB

.text
Size: 153KB - Virtual size: 152KB

.rdata
Size: 138KB - Virtual size: 138KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 94KB - Virtual size: 94KB