19948d0950edd15374dfae48ab94c71fd15c5a12a916e68f0fe5ff6b462eec09

Sharing

Copy URL Twitter E-mail

General

Target

19948d0950edd15374dfae48ab94c71fd15c5a12a916e68f0fe5ff6b462eec09
Size

208KB
MD5

96df23c173b36af6e7f3f75458d91038
SHA1

a019463ca3b0f2baefee1ef970f7f6a401842fa6
SHA256

19948d0950edd15374dfae48ab94c71fd15c5a12a916e68f0fe5ff6b462eec09
SHA512

d0a3d459164c19fed12d78e2fd1372b4c422784901f81fd6060d2548f0a493094041928be901ddc0de876566dad5d70293e7f1b54ee1305c9ee68810afd1ba84
SSDEEP

3072:gHK3zAV7aFVkPPAlJJ+uiyvEIyrlYgJJp6AU2xHQIq5L5GJAfU04qrDWCh9iyagw:gqjIJAlWuiyvAlYgJfUWRELUQGUVAH

Score

N/A

Malware Config

Signatures

Files

19948d0950edd15374dfae48ab94c71fd15c5a12a916e68f0fe5ff6b462eec09
.exe windows x86

ad7b87142734c2d2bedc72c3e86eb295

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWinEventHook
RegisterWindowMessageA
TranslateMessage
UnregisterHotKey
CreateMenu
DeferWindowPos
GetMessagePos
UpdateWindow
GetClassNameA
GetDC
GetAsyncKeyState
EnumChildWindows
SetWindowPos
GetWindowTextA
FindWindowA
FillRect
TrackPopupMenu
DrawFrameControl
PostMessageA
SetWindowLongA
IsDialogMessageA
GetActiveWindow
AppendMenuA
SetClipboardData
DestroyWindow
SendMessageA
GetClipboardData
SendDlgItemMessageA
CheckRadioButton
SetForegroundWindow
BeginDeferWindowPos
UnhookWinEvent

ole32

CoCreateInstance
CoUninitialize
CoInitialize
OleInitialize
OleSetContainedObject

oleacc

AccessibleObjectFromPoint
GetOleaccVersionInfo
GetStateTextA

oleaut32

OleTranslateColor
OleCreatePropertyFrameIndirect
OleIconToCursor

kernel32

VirtualProtect
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
SetEndOfFile
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetTimeZoneInformation
HeapSize
InitializeCriticalSection
CreateFileA
VirtualQuery
InterlockedExchange
FlushFileBuffers
SetStdHandle
GetOEMCP
GetACP
RtlUnwind
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetCPInfo
GetDateFormatA
GetTimeFormatA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
WriteFile
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
GetSystemInfo
ExpandEnvironmentStringsA
GetVolumeInformationA
GetCurrentThread
DuplicateHandle
PeekNamedPipe
GetExitCodeProcess
GetEnvironmentVariableA
ResetEvent
FindFirstChangeNotificationA
DeleteFileA
OpenMutexA
CreateMutexA
CreateEventA
FileTimeToSystemTime
GetVersion
LoadLibraryA
ExitProcess
WideCharToMultiByte
GetFileTime
GetModuleFileNameA
TlsGetValue
TlsAlloc
GetProfileStringW
LoadLibraryExA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersionExA
SetLastError
GetCurrentThreadId
GetLastError
TlsFree
TlsSetValue
CloseHandle
EnterCriticalSection
LeaveCriticalSection
ReadFile
SetFilePointer
DeleteCriticalSection
FatalAppExitA
HeapDestroy
HeapCreate

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ad7b87142734c2d2bedc72c3e86eb295

Headers

File Characteristics

Imports

user32

ole32

oleacc

oleaut32

kernel32

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 68KB - Virtual size: 392KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 68KB - Virtual size: 392KB