fbfc507e91bd80b54f025c1d09ef1220074d15dc737c04ef4a2cb629bcde5361

Sharing

Copy URL Twitter E-mail

General

Target

fbfc507e91bd80b54f025c1d09ef1220074d15dc737c04ef4a2cb629bcde5361
Size

1.2MB
MD5

0c25bf178c66ec8f9600631be1d3d3f0
SHA1

fad3203ec44fc0f0e2f9707e465b1ffdd19346d1
SHA256

fbfc507e91bd80b54f025c1d09ef1220074d15dc737c04ef4a2cb629bcde5361
SHA512

6cd70390dc32f9c225e38d573c0255c11c3a29adc44621679df4aa920936d61448285811b819aab49aebaa41862cd11cf2b6b4764817ed1c1367084dcbb00a22
SSDEEP

12288:sKwLpJ2iUvjZH9TIROyE2UrJ4JSdZcJgldaUmR509+Hb913A/n:ULBUV4MJ4JSHcmdaUs2+55A

Score

N/A

Malware Config

Signatures

Files

fbfc507e91bd80b54f025c1d09ef1220074d15dc737c04ef4a2cb629bcde5361
.exe windows x86

6415271be83593c202ebe8d99f070c27

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmSetConversionStatus
ImmGetContext

kernel32

GetModuleHandleW
GetLastError
CreateEventW
CloseHandle
CreateThread
MultiByteToWideChar
GetModuleFileNameW
CompareStringA
SetEndOfFile
GetDriveTypeA
SetEnvironmentVariableA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoW
LoadLibraryA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
HeapSize
GetConsoleMode
CreateFileA
CompareStringW
GetConsoleCP
GetCurrentDirectoryA
QueryPerformanceFrequency
QueryPerformanceCounter
GetProcAddress
FreeLibrary
LoadLibraryW
CreateDirectoryW
DeleteFileW
WideCharToMultiByte
FindNextFileW
LocalFree
FindFirstFileW
FindClose
GetVersionExW
GetCommandLineW
CreateFileMappingW
OpenFileMappingW
CreateFileW
MapViewOfFile
UnmapViewOfFile
InterlockedIncrement
InterlockedCompareExchange
MoveFileExW
RemoveDirectoryW
WaitForSingleObject
GetCurrentThreadId
ReleaseMutex
CreateMutexW
OpenMutexW
GetFileSize
SetFilePointer
WriteFile
ReadFile
FlushFileBuffers
SetLastError
LCMapStringW
GetTickCount
Sleep
CreateProcessW
InterlockedExchange
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetVersionExA
GetProcessHeap
GetStartupInfoW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeW
RtlUnwind
HeapReAlloc
GetTimeZoneInformation
RaiseException
LCMapStringA
GetCPInfo
GetStringTypeA
GetStringTypeW
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetStdHandle
GetModuleFileNameA
VirtualFree
VirtualAlloc
HeapDestroy
HeapCreate
ExitProcess
GetACP
GetOEMCP
IsValidCodePage
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
GetCurrentProcessId
GetFullPathNameW

user32

GetClassNameW
ReleaseCapture
GetCursorPos
GetWindowLongW
OffsetRect
GetWindowRect
SendMessageW
MoveWindow
SetWindowLongW
SetWindowTextW
GetDlgCtrlID
RedrawWindow
ShowWindow
SetCapture
SetCursorPos
ActivateKeyboardLayout
GetSystemMetrics
PtInRect
BeginPaint
SetRect
DefWindowProcW
GetCursor
GetMonitorInfoW
SetWindowRgn
UpdateLayeredWindow
RegisterClassExW
FillRect
MonitorFromPoint
DestroyWindow
EndPaint
SubtractRect
KillTimer
InflateRect
CreateDialogParamW
DialogBoxParamW
TrackMouseEvent
GetParent
CallWindowProcW
GetDlgItem
LoadBitmapW
GetKeyboardLayoutList
SetForegroundWindow
IsIconic
CreateWindowExW
SetClassLongW
SetCursor
LoadCursorW
GetDlgItemTextW
EnableWindow
IsWindowEnabled
PostMessageW
ReleaseDC
DrawTextW
CheckDlgButton
GetDC
MessageBoxW
IntersectRect
EndDialog
FindWindowW
SetWindowPos
IsDlgButtonChecked
SetTimer
SetFocus
SetDlgItemTextW
GetWindowTextW

gdi32

GetStockObject
CreateCompatibleDC
DeleteDC
CreateSolidBrush
GetTextExtentPoint32W
GetObjectW
SelectObject
SetBkMode
StretchBlt
CreatePen
GetTextExtentPointW
Rectangle
CreateFontIndirectW
DeleteObject
CreateCompatibleBitmap
GetPixel
BitBlt
CreateDIBSection
SetTextColor

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHFileOperationW

wininet

InternetOpenUrlW
InternetCloseHandle
InternetReadFile
InternetConnectW
HttpSendRequestW
InternetSetOptionW
InternetOpenW
HttpQueryInfoW
HttpOpenRequestW
InternetQueryOptionW
InternetCanonicalizeUrlW

comctl32

InitCommonControlsEx

msimg32

TransparentBlt

advapi32

RegQueryValueExW
SetSecurityInfo
SetEntriesInAclW
GetSecurityDescriptorSacl
BuildExplicitAccessWithNameW
SetNamedSecurityInfoW
GetSecurityInfo
GetNamedSecurityInfoW
RegOpenKeyExW
RegCloseKey
RegQueryValueW
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegCreateKeyExW

Sections

.text
Size: 304KB - Virtual size: 301KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 668KB - Virtual size: 665KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

..
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6415271be83593c202ebe8d99f070c27

Headers

File Characteristics

Imports

imm32

kernel32

user32

gdi32

shell32

wininet

comctl32

msimg32

advapi32

Sections

.text Size: 304KB - Virtual size: 301KB

.rdata Size: 72KB - Virtual size: 68KB

.data Size: 128KB - Virtual size: 143KB

.rsrc Size: 668KB - Virtual size: 665KB

.. Size: 28KB - Virtual size: 28KB

.text
Size: 304KB - Virtual size: 301KB

.rdata
Size: 72KB - Virtual size: 68KB

.data
Size: 128KB - Virtual size: 143KB

.rsrc
Size: 668KB - Virtual size: 665KB

..
Size: 28KB - Virtual size: 28KB