81392115acc020f03c9249f0eab8b11d4404ed32e9eaae0272e2992adeae589a

Sharing

Copy URL Twitter E-mail

General

Target

81392115acc020f03c9249f0eab8b11d4404ed32e9eaae0272e2992adeae589a
Size

496KB
MD5

0c3b164c0bb7538c8b436abab3dc1ab5
SHA1

5efd2916496f7f9e28c4bc7370b77c7944492d2e
SHA256

81392115acc020f03c9249f0eab8b11d4404ed32e9eaae0272e2992adeae589a
SHA512

4b35783a8ca7e950eef3292fd12904bb76af0c87c01c6485c9701063b5d4d74e9d9978dc9e9d3cc09291da6b246e13c3bc14e77fe064070afd9e98f6c17971a2
SSDEEP

12288:kXP/wNoFvPy4sKTIkj7HOgJJcdG8uMzR2c:YFvPy4LTINgyvu+2c

Score

N/A

Malware Config

Signatures

Files

81392115acc020f03c9249f0eab8b11d4404ed32e9eaae0272e2992adeae589a
.exe windows x86

a554f3330f9a133311c7e6656812ff68

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
GetLastError
DeleteCriticalSection
CreateWaitableTimerA
HeapSize
CopyFileA
QueryPerformanceCounter
OpenMutexA
LCMapStringW
HeapAlloc
CompareStringA
HeapReAlloc
VirtualAlloc
GetTempFileNameW
GetConsoleCP
FreeLibrary
InitializeCriticalSection
GetCommandLineA
WriteProfileSectionA
HeapCreate
SetFilePointer
GetModuleHandleA
UnhandledExceptionFilter
GetOEMCP
GetConsoleOutputCP
GetProcessHeap
GetEnvironmentStringsW
RtlUnwind
GetLocaleInfoA
EnumResourceNamesW
CloseHandle
SetUnhandledExceptionFilter
VirtualQuery
Sleep
GetACP
GetTimeZoneInformation
ExitProcess
SetStdHandle
GetProcAddress
GetUserDefaultLCID
SetHandleCount
InterlockedIncrement
CompareStringW
GetConsoleScreenBufferInfo
TlsFree
GetEnvironmentStrings
HeapDestroy
RtlMoveMemory
SetThreadAffinityMask
MultiByteToWideChar
GetTickCount
InterlockedDecrement
LockFile
GetStdHandle
SetEnvironmentVariableA
FreeEnvironmentStringsA
TerminateProcess
SetLastError
VirtualFree
GetTimeFormatA
GetLocaleInfoW
ReadFile
WriteFileEx
WriteFile
LeaveCriticalSection
DebugBreak
MoveFileW
InterlockedExchange
FreeEnvironmentStringsW
EnumSystemLocalesA
IsDebuggerPresent
IsValidLocale
CreateFileA
GetModuleFileNameA
FlushFileBuffers
GetPrivateProfileSectionA
CreateFileMappingW
GetPrivateProfileSectionNamesA
FindNextFileA
HeapFree
GetFileType
GetStringTypeA
IsValidCodePage
CreatePipe
GetStartupInfoA
GetCurrentThread
GetStringTypeW
ConnectNamedPipe
WideCharToMultiByte
CreateMutexA
GetCurrentThreadId
TlsGetValue
GetConsoleMode
TlsSetValue
WriteConsoleW
GetCPInfo
LoadLibraryA
GetVersionExA
TlsAlloc
GetCurrentProcessId
SetConsoleCtrlHandler
GetSystemTimeAsFileTime
GetDateFormatA
SetEnvironmentVariableW
EnterCriticalSection
GlobalCompact
GlobalLock
LCMapStringA
ConvertDefaultLocale
GetCurrentProcess

user32

DdeClientTransaction
DestroyWindow
CheckDlgButton
MessageBoxW
PostThreadMessageW
GetSystemMenu
GetInputState
GetTitleBarInfo
RegisterClassExA
LoadBitmapW
GetDesktopWindow
DlgDirSelectExA
GetProcessDefaultLayout
WINNLSGetIMEHotkey
IsWindowEnabled
ShowWindow
DefWindowProcW
DdeInitializeW
RemovePropA
GetUserObjectSecurity
CreateDesktopW
SetMenuDefaultItem
GetKBCodePage
ChildWindowFromPoint
CreateWindowExA
ValidateRgn
RegisterClassA

comctl32

ImageList_Create
ImageList_GetImageCount
CreateUpDownControl
ImageList_GetDragImage
CreatePropertySheetPage
ImageList_Merge
ImageList_GetFlags
ImageList_EndDrag
CreateToolbarEx
ImageList_DrawEx
ImageList_DragShowNolock
InitCommonControlsEx
ImageList_Destroy

wininet

FtpFindFirstFileA
FreeUrlCacheSpaceW
UnlockUrlCacheEntryFileW
DeleteUrlCacheEntryA
FindNextUrlCacheEntryExA
GopherGetLocatorTypeA
DeleteUrlCacheContainerA
InternetSetCookieA

gdi32

CreateDCA
CreatePolyPolygonRgn
DeleteObject
DeleteDC
GetObjectA
GetDeviceCaps

comdlg32

ChooseColorA
FindTextW

Sections

.text
Size: 152KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 316KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4096.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a554f3330f9a133311c7e6656812ff68

Headers

File Characteristics

Imports

kernel32

user32

comctl32

wininet

gdi32

comdlg32

Sections

.text Size: 152KB - Virtual size: 150KB

.rdata Size: 316KB - Virtual size: 314KB

.data Size: 4KB - Virtual size: 4096.0MB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 152KB - Virtual size: 150KB

.rdata
Size: 316KB - Virtual size: 314KB

.data
Size: 4KB - Virtual size: 4096.0MB

.rsrc
Size: 20KB - Virtual size: 16KB