b75ff77aca9a25acf4c0ad94853385d2a3ec188d4a6066eb5b3c7dcc52c0a692

Sharing

Copy URL

Twitter E-mail

General

Target

b75ff77aca9a25acf4c0ad94853385d2a3ec188d4a6066eb5b3c7dcc52c0a692
Size

569KB
MD5

b903665c8fbd50d6bf8cdd3fb2925146
SHA1

6236fccb03ebe21b5b8d72443d4edf71384c045c
SHA256

b75ff77aca9a25acf4c0ad94853385d2a3ec188d4a6066eb5b3c7dcc52c0a692
SHA512

ad0a270a857b2165513bb0f2a0ee32c6d343149d1faaca0b735733d177af1c11cbe5ead694bf7e9a106017fb56023b779dfad4f6ceccc5b91fd3e9b890c187c5
SSDEEP

12288:paIJZRxQe8CBNKJ/3ISJFiT32e6MJE+8MOUBXiPb:0ID8aB0F4Sjm2e5+jWiPb

Score

N/A

Malware Config

Signatures

Files

b75ff77aca9a25acf4c0ad94853385d2a3ec188d4a6066eb5b3c7dcc52c0a692
.exe windows x86

9c7cf8b2479bfca1e692614044005130

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
CloseHandle
LocalFree
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetLocaleInfoA
GetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
VirtualAlloc
HeapReAlloc
HeapAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
LocalAlloc
LoadLibraryA
RemoveDirectoryA
GetProcAddress
CreateSemaphoreA
MapUserPhysicalPagesScatter
Sleep
GetFileSize
RtlUnwind
CreateFileA
GetCommandLineA
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapSize
ExitProcess
HeapFree
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapCreate

user32

CheckMenuItem
DrawFrameControl
EndDeferWindowPos
LoadImageA
DispatchMessageA
PostMessageA
AppendMenuA
GetClassNameA
TrackPopupMenu
FillRect
IsWindowEnabled
DrawIcon
SetParent
ExitWindowsEx
IsDialogMessageA
InflateRect
CheckMenuRadioItem
IntersectRect
GetActiveWindow

ole32

CoUninitialize
OleSetContainedObject
OleInitialize
CoSuspendClassObjects
OleUninitialize
StgCreateDocfile
CoInitialize
OleCreate

gdi32

SetRectRgn
CombineRgn
Escape
GetTextMetricsA
RectVisible
EndDoc
AbortDoc
TextOutA
SetAbortProc

Sections

.text
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c7cf8b2479bfca1e692614044005130

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

gdi32

Sections

.text Size: 293KB - Virtual size: 293KB

.rdata Size: 144KB - Virtual size: 144KB

.data Size: 3KB - Virtual size: 76KB

.rodata Size: 44KB - Virtual size: 43KB

.rsrc Size: 82KB - Virtual size: 82KB

.text
Size: 293KB - Virtual size: 293KB

.rdata
Size: 144KB - Virtual size: 144KB

.data
Size: 3KB - Virtual size: 76KB

.rodata
Size: 44KB - Virtual size: 43KB

.rsrc
Size: 82KB - Virtual size: 82KB