93b920e774874615c40b0b59149ea0200f2c23ece5e27ca1230ffa4d646c45b2

Sharing

Copy URL Twitter E-mail

General

Target

93b920e774874615c40b0b59149ea0200f2c23ece5e27ca1230ffa4d646c45b2
Size

276KB
MD5

43d2fbb629846c12366cdd6ca0369a6b
SHA1

d06f32bf91d0d29c9861c0f3a6bd9b845256d3e4
SHA256

93b920e774874615c40b0b59149ea0200f2c23ece5e27ca1230ffa4d646c45b2
SHA512

79b966d566a44a1952826ae522063509cd92c9fdb1d7fda42bcb0f90f0d046a7b0e4d829fa91c9b8d059da0d1ba9eeab0e847ccd0c071c2a3ef6e7bf85d12555
SSDEEP

3072:AypDwJ1xiUei5tDfE+T9iGqc8hGCZViZChGF/61j+nJFYo+L5LvKJfeyij9PRnkE:AyStbEuyhGCZViZCcF/61fd+BlU

Score

N/A

Malware Config

Signatures

Files

93b920e774874615c40b0b59149ea0200f2c23ece5e27ca1230ffa4d646c45b2
.exe windows x86

8806f6000efc0d69cf8d175b1d237990

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
EnumSystemLanguageGroupsA
WriteConsoleW
CreateFileW
GetConsoleCP
FlushFileBuffers
SetStdHandle
OutputDebugStringW
GetStringTypeW
HeapReAlloc
LoadLibraryExW
LCMapStringW
OutputDebugStringA
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualQuery
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameA
LoadLibraryA
lstrcatA
CloseHandle
DeviceIoControl
Sleep
GetLastError
HeapAlloc
GetProcAddress
GlobalAlloc
FreeLibrary
GetStartupInfoW
DeleteCriticalSection
GetFileType
SetFilePointerEx
ReadConsoleW
GetConsoleMode
SetEndOfFile
LeaveCriticalSection
EncodePointer
DecodePointer
HeapFree
ReadFile
RaiseException
RtlUnwind
GetCommandLineA
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
HeapSize
IsDebuggerPresent
SetLastError
GetCurrentThreadId
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetProcessHeap
GetStdHandle
WriteFile
GetModuleFileNameW
EnterCriticalSection

user32

LoadIconA
LoadCursorA
GetWindowThreadProcessId
FindWindowExA
FindWindowA
EnumChildWindows
GetDesktopWindow
SetWindowLongA
GetWindowLongA
OffsetRect
FillRect
MapWindowPoints
ClientToScreen
GetCursorPos
GetWindowRect
GetClientRect
SetWindowTextA
ReleaseDC
GetDC
SetForegroundWindow
SetFocus
CloseClipboard
GetDlgCtrlID
SendDlgItemMessageA
IsDlgButtonChecked
GetDlgItemTextA
SetDlgItemTextA
GetDlgItem
EndDialog
DestroyWindow
CreateWindowExA
RegisterClassExA
PostQuitMessage
DefWindowProcA
SendMessageA
MessageBoxA

gdi32

GetWinMetaFileBits
GetEnhMetaFileA
SetMetaFileBitsEx
SetMapMode
SelectClipRgn
PlayMetaFile
DeleteObject
CreateSolidBrush
CreateCompatibleDC
CopyMetaFileA
Polygon

comdlg32

GetOpenFileNameA

shell32

SHGetFolderPathA

shlwapi

PathRemoveFileSpecA
PathAppendA

secur32

AcquireCredentialsHandleW
QuerySecurityPackageInfoW

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8806f6000efc0d69cf8d175b1d237990

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

shlwapi

secur32

Sections

.text Size: 83KB - Virtual size: 83KB

.rdata Size: 28KB - Virtual size: 28KB

.data Size: 6KB - Virtual size: 13KB

.text Size: 5KB - Virtual size: 5KB

.rsrc Size: 152KB - Virtual size: 151KB

.text
Size: 83KB - Virtual size: 83KB

.rdata
Size: 28KB - Virtual size: 28KB

.data
Size: 6KB - Virtual size: 13KB

.text
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 152KB - Virtual size: 151KB