2954e96d59ea1ddfe9a14e44b4f0209dbb82d2ce18b8eba13bf93e9ea20a7f6e

Sharing

Copy URL Twitter E-mail

General

Target

2954e96d59ea1ddfe9a14e44b4f0209dbb82d2ce18b8eba13bf93e9ea20a7f6e
Size

325KB
MD5

0eb8bdc2a082997990ea5b9060a86b36
SHA1

b40a8b3e6a6bd8e35313473c78bc04c9ef5887d9
SHA256

2954e96d59ea1ddfe9a14e44b4f0209dbb82d2ce18b8eba13bf93e9ea20a7f6e
SHA512

93089054d20f1cb2707949ce0ed8a51ea394435616c444728827b898a072d339ce27eaafec4e99f93cec1db645bf462b2cd3abd26379ca9a8b50ca6a4292df69
SSDEEP

6144:rarDtVJvR2IV5x4hBmva07Z7uB1/cWEWhD0q:WljvRyPeHdWEKw

Score

N/A

Malware Config

Signatures

Files

2954e96d59ea1ddfe9a14e44b4f0209dbb82d2ce18b8eba13bf93e9ea20a7f6e
.exe windows x86

5707e856125a7012d7a668051a51a98e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchange
GetLastError
GetSystemTimeAsFileTime
IsValidLocale
HeapReAlloc
HeapSize
HeapCreate
GetEnvironmentStrings
HeapAlloc
IsValidCodePage
GetOEMCP
TlsGetValue
MultiByteToWideChar
IsBadWritePtr
CompareStringA
GetProcAddress
ExitProcess
GetVersionExA
CreateMutexA
WideCharToMultiByte
LoadLibraryA
VirtualAlloc
GetStdHandle
FreeEnvironmentStringsA
GetLocaleInfoA
VirtualFree
GetCurrentThreadId
SetEnvironmentVariableA
TlsAlloc
TlsFree
RtlUnwind
GetUserDefaultLCID
GetCurrentThread
LeaveCriticalSection
TlsSetValue
HeapDestroy
InitializeCriticalSection
GetModuleFileNameA
GetCurrentProcessId
UnhandledExceptionFilter
GetTimeZoneInformation
EnumSystemLocalesA
GetCommandLineA
GetFileType
LCMapStringA
FreeEnvironmentStringsW
GetStringTypeW
CompareStringW
SetLastError
GetEnvironmentStringsW
GetTimeFormatA
HeapFree
OpenMutexA
GetStringTypeA
EnterCriticalSection
ReadFile
SetFilePointer
GetModuleHandleA
GetTickCount
FlushFileBuffers
VirtualQuery
GetLocaleInfoW
GetStartupInfoA
QueryPerformanceCounter
CloseHandle
GetACP
GetDateFormatA
VirtualProtect
DeleteCriticalSection
ReleaseMutex
GetCPInfo
LCMapStringW
TerminateProcess
WriteFile
GetCurrentProcess
SetStdHandle
GetSystemInfo
SetHandleCount

shell32

SHGetSpecialFolderLocation

comctl32

ImageList_AddMasked
ImageList_Destroy
DrawStatusTextW
MakeDragList
CreateToolbarEx
ImageList_GetImageCount
DrawInsert
ImageList_DrawIndirect
InitCommonControlsEx
ImageList_SetBkColor
ImageList_GetIcon
ImageList_SetFilter
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_Remove
ImageList_Read
CreateToolbar
ImageList_Draw
ImageList_DrawEx
ImageList_LoadImage
CreateStatusWindow
CreateMappedBitmap

comdlg32

GetSaveFileNameA
FindTextW

advapi32

CryptDeriveKey
CryptDuplicateKey
CryptGetDefaultProviderA
LookupPrivilegeDisplayNameA
CryptHashSessionKey
RegSetValueW
RegQueryInfoKeyA
RegReplaceKeyW
CryptVerifySignatureA
RegConnectRegistryA
CryptEnumProviderTypesA
CreateServiceW

user32

DrawTextExA
RegisterClassA
TileWindows
DefWindowProcA
ArrangeIconicWindows
EnumClipboardFormats
CreateWindowExA
RegisterDeviceNotificationA
WinHelpA
EnumDisplaySettingsW
GetScrollPos
IntersectRect
SetMenuItemBitmaps
SetPropW
ShowWindow
GetThreadDesktop
GetClassLongA
SetMenuDefaultItem
CreateAcceleratorTableA
DestroyWindow
RegisterClassExA
LookupIconIdFromDirectoryEx
CloseWindow
FrameRect
DdeAbandonTransaction
GetProcessWindowStation
MessageBoxW
BroadcastSystemMessage
GetPropA

gdi32

GetPixelFormat
GetROP2
RectVisible
RestoreDC
PolyPolygon

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5707e856125a7012d7a668051a51a98e

Headers

File Characteristics

Imports

kernel32

shell32

comctl32

comdlg32

advapi32

user32

gdi32

Sections

.text Size: 126KB - Virtual size: 125KB

.rdata Size: 65KB - Virtual size: 88KB

.data Size: 85KB - Virtual size: 84KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 126KB - Virtual size: 125KB

.rdata
Size: 65KB - Virtual size: 88KB

.data
Size: 85KB - Virtual size: 84KB

.rsrc
Size: 48KB - Virtual size: 47KB