9e0b19d7281c1123002ff111d5f60a9d767a142bfd8dc7473373ac57b2737497

Sharing

Copy URL Twitter E-mail

General

Target

9e0b19d7281c1123002ff111d5f60a9d767a142bfd8dc7473373ac57b2737497
Size

186KB
MD5

a033121f0067c94a1e103408de56cf40
SHA1

bc2d02125ae085fa62ed89aac7340023f610c1dd
SHA256

9e0b19d7281c1123002ff111d5f60a9d767a142bfd8dc7473373ac57b2737497
SHA512

2fe0abd6bfb75d41a0e8bcb3dbd850ddb0cec48b3983ff2a9c6bfd0d3202b24abe5752c4251bb5f038dd4a5522a26d5534eb407bba12b3d00b7382075df25b96
SSDEEP

1536:dWfUIT6OIX1yQtHp5Nc9b8ndXRoNo7d1ZjviCeqxD6Z7jAgF35woKlL1HMwnVdf1:d4vOOOZdBwlHqx2VA05woKlLiwnVQQ

Score

N/A

Malware Config

Signatures

Files

9e0b19d7281c1123002ff111d5f60a9d767a142bfd8dc7473373ac57b2737497
.exe windows x86

4c20db64e8df3b30ed1d04b5cdb9f3b3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InterlockedExchange
LCMapStringA
LCMapStringW
LoadLibraryA
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
GlobalFree
RtlUnwind
SetHandleCount
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcatW
lstrcpyW
lstrlenW
GetVersionExA
GetTickCount
GetSystemTimeAsFileTime
GetSystemInfo
GetStringTypeW
GetStringTypeA
GetStdHandle
GetProcAddress
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLastError
GetFileType
GetFileSize
GetEnvironmentStringsW
GetEnvironmentStrings
GetCurrentThreadId
GetCurrentProcessId
GetCommandLineA
GetCPInfo
GetACP
FreeEnvironmentStringsW
FreeEnvironmentStringsA
ExitProcess
CreateFileW
CloseHandle
GetCurrentProcess
VirtualAlloc
GetStartupInfoA
GlobalAlloc
ReadFile
GetWindowsDirectoryA

user32

IsZoomed
LoadAcceleratorsW
LoadBitmapW
LoadCursorW
LoadIconW
LoadStringA
LoadStringW
MessageBoxA
MessageBoxW
MoveWindow
OffsetRect
PeekMessageW
PostMessageW
PostQuitMessage
PtInRect
RegisterClassW
ReleaseCapture
ReleaseDC
SendMessageW
SetCapture
SetDlgItemTextW
SetRect
SetTimer
ShowWindow
TranslateAcceleratorW
TranslateMessage
UnionRect
UpdateWindow
WaitMessage
WinHelpW
wsprintfW
IsIconic
IsDlgButtonChecked
InvertRect
InvalidateRect
IntersectRect
GetWindowRect
GetWindowPlacement
GetSystemMetrics
GetSubMenu
GetParent
GetMessageW
GetMenu
GetForegroundWindow
GetDlgItemTextW
GetDlgItem
GetDC
GetClientRect
FrameRect
FillRect
EndPaint
EndDialog
EnableMenuItem
DrawTextW
DrawMenuBar
DispatchMessageW
DialogBoxParamW
DestroyWindow
DefWindowProcW
CreateWindowExW
CheckRadioButton
CheckDlgButton
BeginPaint
LoadCursorA
LoadIconA
GetSysColor
GetDesktopWindow

gdi32

GetPixel
GetStockObject
GetTextColor
CreateCompatibleDC
GetTextExtentPoint32W
LineTo
GetDeviceCaps
RestoreDC
SaveDC
SelectObject
SetBkMode
SetPixel
SetTextColor
GetBkMode
GdiFlush
ExcludeClipRect
Ellipse
DeleteObject
DeleteDC
CreateSolidBrush
MoveToEx
BitBlt
CreateCompatibleBitmap
CreateFontIndirectW

advapi32

RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegCloseKey
RegOpenKeyA
RegSetValueExW

shell32

SHGetSpecialFolderPathW

msvcrt

memcpy

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c20db64e8df3b30ed1d04b5cdb9f3b3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

msvcrt

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 40KB - Virtual size: 40KB

.text2 Size: 1024B - Virtual size: 1000B

.rsrc Size: 59KB - Virtual size: 58KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 40KB - Virtual size: 40KB

.text2
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 59KB - Virtual size: 58KB