84d83837c58a91c98a6ae21874e60edd05bdfa98b33b50eee3a69f1ed0e74691

Sharing

Copy URL Twitter E-mail

General

Target

84d83837c58a91c98a6ae21874e60edd05bdfa98b33b50eee3a69f1ed0e74691
Size

140KB
MD5

d96dcd3e248e3e00a90e06e3cf345d68
SHA1

c77d3da6e99dde9ad55bb5b2a02e221c9ad84fe8
SHA256

84d83837c58a91c98a6ae21874e60edd05bdfa98b33b50eee3a69f1ed0e74691
SHA512

56cd3d93d2a7cd0f9543a4511765403e9c20a0e7bfb00cd2fb4ed154ee5cf09840ebe45ed2595926cd82afa5cb49bc225b21c24fda91e03c0d261fb1f64cd713
SSDEEP

1536:mcCyWj/skbWfbf3ha6mHdLvYRk2hsu0kRYA+zdipUV1ZMnL2pL+Nc8fa/s8jcdyx:nC6b5y9L9nktUIpUV1zpL+zSqysM7bf

Score

N/A

Malware Config

Signatures

Files

84d83837c58a91c98a6ae21874e60edd05bdfa98b33b50eee3a69f1ed0e74691
.exe windows x86

d3086e0568017eefb8a6fb7676057b5f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
WideCharToMultiByte
FreeLibrary
GetProcAddress
GetModuleHandleA
lstrcmpiA
IsDBCSLeadByte
LeaveCriticalSection
RaiseException
EnterCriticalSection
FindResourceA
LoadLibraryExA
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
InterlockedDecrement
InterlockedIncrement
GetCurrentThreadId
DecodePointer
CreateMutexA
IsWow64Process
GetCurrentProcess
GetTempPathA
LocalFree
CreateThread
GetVersionExA
GetProcessHeap
WriteConsoleW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
MoveFileExW
GetModuleFileNameW
GetOEMCP
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
HeapDestroy
GetModuleFileNameA
MultiByteToWideChar
GetFileSize
FlushFileBuffers
SetEndOfFile
WriteFile
SetFilePointer
ReadFile
GetFileSizeEx
GetLastError
CreateDirectoryA
GetACP
IsValidCodePage
GetConsoleCP
GetConsoleMode
SetFilePointerEx
GetFileType
GetStdHandle
LCMapStringW
GetModuleHandleW
GetStartupInfoW
CloseHandle
GetSystemTimeAsFileTime
CreateFileW
CreateFileA
TlsFree
TlsSetValue
TlsGetValue
IsDebuggerPresent
OutputDebugStringW
EncodePointer
GetStringTypeW
GetSystemInfo
VirtualAlloc
VirtualProtect
VirtualQuery
IsProcessorFeaturePresent
ExitThread
LoadLibraryExW
AreFileApisANSI
ExitProcess
GetModuleHandleExW
GetCommandLineA
RtlUnwind
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
Sleep
TerminateProcess
TlsAlloc

user32

GetMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
GetClassNameA
GetWindow
GetWindowTextA
SendMessageA
DefWindowProcA
CharNextA
EnumWindows

advapi32

SetNamedSecurityInfoA
RegCloseKey
RegQueryInfoKeyW
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
AdjustTokenPrivileges
LookupPrivilegeValueA
FreeSid
OpenProcessToken
RegDeleteKeyA
SetEntriesInAclA
AllocateAndInitializeSid
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA

shell32

SHGetFolderPathA

ole32

CoCreateInstance
CoTaskMemAlloc
CoInitialize
CoUninitialize
CoInitializeSecurity
CoSetProxyBlanket
CoInitializeEx
CoTaskMemRealloc
CoTaskMemFree

oleaut32

SysAllocString
SysAllocStringLen
VariantClear
VarUI4FromStr
SysFreeString

comctl32

InitCommonControlsEx

crypt32

CertAddEncodedCertificateToStore
CertOpenSystemStoreA
CertCloseStore

winmm

waveOutSetVolume
waveOutGetVolume

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3086e0568017eefb8a6fb7676057b5f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

comctl32

crypt32

winmm

Sections

.text Size: 94KB - Virtual size: 93KB

.rdata Size: 32KB - Virtual size: 32KB

.data Size: 12KB - Virtual size: 20KB

.rsrc Size: 512B - Virtual size: 488B

.text
Size: 94KB - Virtual size: 93KB

.rdata
Size: 32KB - Virtual size: 32KB

.data
Size: 12KB - Virtual size: 20KB

.rsrc
Size: 512B - Virtual size: 488B