6066e770e951aefae907630ad4714a34a838e00b78e8c41b00e0fe9dc771f61f

Sharing

Copy URL

Twitter E-mail

General

Target

6066e770e951aefae907630ad4714a34a838e00b78e8c41b00e0fe9dc771f61f
Size

232KB
MD5

0fbe70cdd4137b2f9954f4079bd7f4f0
SHA1

6b130454160d57818501611645e2f468d0650db6
SHA256

6066e770e951aefae907630ad4714a34a838e00b78e8c41b00e0fe9dc771f61f
SHA512

6839fbb76694ef425fd16ea00fe452e76e68bde339d375523fce5b1e8377a6e6e8338759bf6f99665358cdf5f687eebc8f65d518a8e460a15639ef2d3b5a156d
SSDEEP

3072:mxHzOhjazDbwuC9MO56o7Y4ChrGj5Lv1cxwzSaKG:mxHzO5azDbw7J56MZss5T1nzT

Score

N/A

Malware Config

Signatures

Files

6066e770e951aefae907630ad4714a34a838e00b78e8c41b00e0fe9dc771f61f
.exe windows x86

6dce8c79e931185b6c5e85cf6c4d6ddf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExA
RegOpenKeyExA

kernel32

LockResource
GetTickCount
QueryPerformanceFrequency
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetSystemInfo
GetVersionExA
IsProcessorFeaturePresent
GetProcAddress
OutputDebugStringA
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
HeapSetInformation
LoadResource
SizeofResource
FindResourceW
GetModuleHandleW
MulDiv
GetCommandLineW

user32

SetTimer
EndPaint
BeginPaint
SetCursor
UnionRect
SetWindowPos
KillTimer
DefWindowProcW
PostMessageW
GetMessageW
TranslateMessage
DispatchMessageW
PostQuitMessage
FillRect
SystemParametersInfoW
DrawTextW
ScreenToClient
InvalidateRect
UpdateWindow
SetRect
LoadCursorW
LoadIconW
RegisterClassW
AdjustWindowRect
CreateWindowExW
GetClientRect
LoadStringW
IntersectRect
OffsetRect
PeekMessageW
MessageBoxW
GetSystemMetrics
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
EnumDisplaySettingsW
SetRectEmpty

msvcrt

_ftol2_sse
_ftol2
srand
memset
??3@YAXPAX@Z
??2@YAPAXI@Z
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead
exit
_acmdln
_initterm
_amsg_exit
__setusermatherr
__p__commode
__p__fmode
__set_app_type
?terminate@@YAXXZ
_except_handler4_common
_controlfp
_unlock
__dllonexit
_CIsqrt
time
_lock
_onexit
_CIacos
_CIatan2
_CIsin
_finite
memcpy
iswdigit
rand
qsort
_vsnwprintf
_wtol

comctl32

ord344
InitCommonControlsEx

ole32

CoInitializeEx
CoUninitialize

gdi32

SetBkColor
SetTextColor
SelectObject
DeleteObject
GetStockObject
ExcludeClipRect
CreateFontW
GetDeviceCaps

d3d9

Direct3DCreate9

winmm

timeGetTime

Sections

.text
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 33KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6dce8c79e931185b6c5e85cf6c4d6ddf

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

user32

msvcrt

comctl32

ole32

gdi32

d3d9

winmm

Sections

.text Size: 124KB - Virtual size: 124KB

.data Size: 33KB - Virtual size: 44KB

.rsrc Size: 39KB - Virtual size: 39KB

.reloc Size: 34KB - Virtual size: 37KB

.text
Size: 124KB - Virtual size: 124KB

.data
Size: 33KB - Virtual size: 44KB

.rsrc
Size: 39KB - Virtual size: 39KB

.reloc
Size: 34KB - Virtual size: 37KB