c4ddcb7a9d13e773bb32a7f80bae98d669b34d60c21c5c02909b83cb43905421

Sharing

Copy URL Twitter E-mail

General

Target

c4ddcb7a9d13e773bb32a7f80bae98d669b34d60c21c5c02909b83cb43905421
Size

146KB
MD5

a3570ac7c8d41856c70b0b888fce4a40
SHA1

a6a131fc51b91147b78506e83dc4bc612b7f5f7d
SHA256

c4ddcb7a9d13e773bb32a7f80bae98d669b34d60c21c5c02909b83cb43905421
SHA512

b0e4895867f5434985558cfa8ddc1cac21212841462341a3fc36688e88b6f8463ad334bf65dd755541c49278c80e5b7f263f78749d6ae9355b693ce2453d0891
SSDEEP

3072:FP4XtoL7MJXNSjBRPe2smjVFnubpJH12bLO:ZngNmR2/kEJVR

Score

N/A

Malware Config

Signatures

Files

c4ddcb7a9d13e773bb32a7f80bae98d669b34d60c21c5c02909b83cb43905421
.exe windows x86

dfe8b376f4e883ed576487e2d1a81bb3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
GetCurrentThreadId
ResumeThread
SetThreadPriority
ExitThread
TerminateThread
CreateFileA
ReadFile
WriteFile
CloseHandle
MoveFileA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetCurrentThread
GetExitCodeProcess
CreateMutexA
ReleaseMutex
GlobalUnlock
GetModuleHandleA
CreateFileW
GetFileSize
GetFullPathNameA
GetTempFileNameA
UnmapViewOfFile
MapViewOfFile
GetUserDefaultLangID
LoadLibraryA
LoadLibraryW
GetProcAddress
CompareStringW
HeapAlloc
HeapCreate
HeapDestroy
GetProcessHeap
HeapReAlloc
HeapSize
HeapFree
lstrcmpiW
LoadLibraryExA
GlobalLock
GetStringTypeExA
GetSystemDirectoryW
WaitForSingleObject
MultiByteToWideChar
SetStdHandle
GetDiskFreeSpaceA
FindFirstFileW
FindNextFileW
FindClose
FindResourceA
LoadResource
SizeofResource
LockResource
FreeResource
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GlobalReAlloc
RemoveDirectoryA
FindResourceW
SetEndOfFile
TlsAlloc
TlsGetValue
TlsFree
CreateEventA
SetEvent
ResetEvent
InterlockedExchange
ExpandEnvironmentStringsA
GetVersionExW
GetModuleFileNameW
GetLocaleInfoA
GetTempPathW
CreateEventW
InterlockedCompareExchange
InterlockedIncrement
GetTickCount
SetEnvironmentVariableA
GetStdHandle
VirtualProtect
SetFileTime
GetEnvironmentStringsW
SetCurrentDirectoryA
OpenMutexA
lstrlenW
OpenProcess
WriteConsoleA
TlsSetValue
GetCurrentProcess
IsValidCodePage
IsDBCSLeadByte
GetVersion
IsDebuggerPresent
GetModuleFileNameA
GetSystemInfo
SetThreadLocale
OutputDebugStringA
GlobalHandle
FindFirstFileA
FindNextFileA
GetDateFormatA
GetModuleHandleW
SetHandleCount
GetLastError
GetDriveTypeA
LoadLibraryExW
CompareStringA
CopyFileA
GetOEMCP
VirtualAlloc
SetLastError
GlobalFree
DuplicateHandle
LCMapStringA
SetUnhandledExceptionFilter
VirtualQuery
WideCharToMultiByte
TerminateProcess
CreateDirectoryA
FreeEnvironmentStringsW
DeviceIoControl
FileTimeToSystemTime
GetCommandLineA
RaiseException
GetCurrentProcessId

msvcrt

rewind
__setusermatherr
_dup
clearerr
_setmode
strcat
_wcsupr
strncmp
_mktemp
fflush
_lseek
_filelengthi64
_fstat
_exit
__initenv
wcsncpy
_errno
_CIsqrt
_c_exit
_vsnprintf
towlower
_open
strrchr
_mbscmp
wcscmp
_stricmp
log
_osver
_close
memchr
_write
wcstol
_lock
qsort
_pipe
_unlink
_onexit
_fullpath
sscanf
_wcslwr
_mkdir
wcschr
_filbuf
swprintf
fclose
rename
fwrite
vsprintf
_controlfp
_isctype
atexit
strtoul
_wcsnicmp
toupper
memmove
_fileno
_wfopen
strstr
_XcptFilter
_pctype
remove
_stat
longjmp
fputc
fread
_strcmpi
iswctype
_open_osfhandle
rand
memcmp
atoi
putchar
isdigit
__p__environ
gmtime
_ftol
__p__fmode
strcspn
wcslen
_wtol
_CIpow
memset
getenv
_iob
strchr
tolower
_beginthreadex
iswspace
strspn
_kbhit
cos
swscanf
wcstoul
__badioinfo
__p___initenv
realloc
clock
_isatty
towupper
sprintf
_initterm
_adjust_fdiv
ctime
wcscspn
_cexit
_umask
_setjmp
fseek
__CxxFrameHandler
__p__commode
floor
ceil
localeconv
atol
wctomb
fprintf
fgetc
wcsncmp
strlen
_acmdln
_read
fsetpos
signal
_assert
fopen
_get_osfhandle
strtol
fgets
abort
_mbsicmp
_itoa
_fdopen
strtok
_setjmp3
strcpy
_wcsicmp
_chmod
_strdup
perror
__set_app_type
_purecall
free
_amsg_exit
sin
printf
_getch
_dup2
strerror
__mb_cur_max
wcsrchr
_mbsrchr
sqrt
_except_handler3
srand
_ismbblead
wcstombs
strncpy
__getmainargs
_vsnwprintf
bsearch
wcscat
ftell
memcpy
_wtoi
_putenv
atof
isleadbyte
_lseeki64
calloc
fputs
_snprintf
isxdigit
_strnicmp
strcmp
malloc
localtime
_unlock
_itow
__dllonexit
ungetc
pow
wcsstr
__pioinfo
__lc_codepage
_getpid
_utime
_strlwr
strncat
setlocale
puts
_getcwd
strpbrk
_ultoa
iswdigit
_flsbuf

user32

SendDlgItemMessageA
GetIconInfo
ShowCursor
OffsetRect
GetCapture
GetFocus
GetMenuStringA
IntersectRect
RemovePropA
InsertMenuA
GetWindowPlacement
SetClipboardData
GetWindowTextA
SetScrollPos
WaitMessage
GetWindowThreadProcessId
DispatchMessageA
EnumWindows
LoadIconA
SetCursor
DrawIconEx
GetSubMenu
GetScrollPos
DrawMenuBar
wsprintfA
GetMenu
GetClassInfoA
TrackPopupMenu
PostQuitMessage
WindowFromPoint
GetDlgItem
RegisterWindowMessageA
GetWindowRect
ShowWindow
CreatePopupMenu
GetDesktopWindow
DeleteMenu
GetSysColorBrush
DrawFrameControl
WinHelpA
GetForegroundWindow
UnregisterClassA
SetRect
SystemParametersInfoA
DestroyIcon
GetSystemMetrics
DefWindowProcA
PostMessageA
ScreenToClient
AdjustWindowRectEx
ReleaseDC
PeekMessageA
GetClassNameA
FillRect
MapWindowPoints
GetMenuState
GetMessagePos
UnhookWindowsHookEx
LoadBitmapA
GetPropA
ClientToScreen
DestroyCursor
DrawTextA
IsWindowVisible
InflateRect
GetScrollRange
GetDCEx
SetScrollRange
IsRectEmpty
SetWindowTextA
EnableMenuItem
GetLastActivePopup
GetWindow
EndPaint
OpenClipboard
KillTimer
OemToCharA
DrawEdge
GetMenuItemID
TranslateMessage
ShowOwnedPopups
CharLowerA
CallNextHookEx
GetScrollInfo
SetPropA
SetWindowPos
GetSystemMenu
LoadStringA
SetScrollInfo
SetMenu
DestroyMenu
GetSysColor
InsertMenuItemA
SetActiveWindow
CreateWindowExA
BeginPaint
RegisterClipboardFormatA
SetFocus
PtInRect
GetClientRect
GetTopWindow
SetWindowPlacement
RemoveMenu
ScrollWindow
RedrawWindow
IsWindowEnabled
ReleaseCapture
CreateMenu
CallWindowProcA
GetParent
FindWindowA
SetClassLongA
LoadCursorA
EnumThreadWindows
IsWindow
CloseClipboard
SetTimer
SetCapture
EnableWindow
IsChild
UpdateWindow
SetForegroundWindow
CheckMenuItem
IsZoomed
SetWindowLongA
SendMessageA
IsIconic
GetKeyboardType
DialogBoxParamA
GetWindowDC
EndDialog
GetWindowLongA
GetDC
MessageBeep
FrameRect
InvalidateRect
IsDialogMessageA
GetKeyState
EmptyClipboard
SetWindowsHookExA

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfe8b376f4e883ed576487e2d1a81bb3

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 55KB - Virtual size: 54KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 79KB - Virtual size: 78KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 55KB - Virtual size: 54KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 79KB - Virtual size: 78KB

.rsrc
Size: 1024B - Virtual size: 4KB