0209caa467fd035e5cc9b82d996614bfabc162417771276f29c75ec3d21c4cf6

Sharing

Copy URL

Twitter E-mail

General

Target

0209caa467fd035e5cc9b82d996614bfabc162417771276f29c75ec3d21c4cf6
Size

211KB
MD5

a39e5ac945627ac1f555ce8039aeeb50
SHA1

4ff3bb4075de55c846d1375f8bee2128478bb636
SHA256

0209caa467fd035e5cc9b82d996614bfabc162417771276f29c75ec3d21c4cf6
SHA512

f5531c4979187a262eb3885165061be054ac1c58287efb03fb6adc3bbed76b6f7f9453c4f5096644e53b0bc75cd2bef8a389b27394cffa8047e62f9db660d967
SSDEEP

3072:4wm/cT/I0qubnzRbirvxfeLqGdQ44x+kxilEd4aiijp7pFqWJEEnabXVaHC:oGIYBUZQqSQDoAYqNJJEEnMF

Score

N/A

Malware Config

Signatures

Files

0209caa467fd035e5cc9b82d996614bfabc162417771276f29c75ec3d21c4cf6
.exe windows x86

37d00d9cecfda4825b62f9e194410f63

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SystemTimeToFileTime
SuspendThread
QueryPerformanceFrequency
SleepEx
GetCurrencyFormatW
PurgeComm
LocalFree
GetPrivateProfileSectionW
lstrcatA
DeviceIoControl
FindVolumeMountPointClose
SetEnvironmentVariableW
UnhandledExceptionFilter
LCMapStringW
GlobalCompact
GetNamedPipeInfo
GetCurrentThreadId
GetTempPathA
EscapeCommFunction
CreateIoCompletionPort
GetStringTypeExA
GetStringTypeW
GetShortPathNameW
GetDiskFreeSpaceExA
GetVersionExA
GetLogicalDrives
LocalFlags
GetExitCodeThread
GetFileInformationByHandle
UpdateResourceA
GetExitCodeProcess
lstrcmpW
CreateSemaphoreA
UpdateResourceW

advapi32

RegQueryValueExA
CryptDestroyKey
RegOpenKeyExA
RegQueryValueExW
CheckTokenMembership
RegCloseKey
CryptAcquireContextA
GetLengthSid
FreeSid
RegOpenKeyExW
CryptReleaseContext
LookupAccountNameW
AllocateAndInitializeSid

user32

IsWindow
PostMessageW
GetSysColorBrush
GetMenuItemInfoA
GetScrollInfo
SetScrollInfo
SendDlgItemMessageW
GetPropW
MoveWindow
UnregisterClassA
GetSysColor
SetActiveWindow
CheckRadioButton
ValidateRgn
GetDlgItem
GetKeyNameTextA
GetDesktopWindow
SetDlgItemTextW
wvsprintfA
SetTimer
SetCursor
GetFocus
EndDialog
CreateDialogParamW
ReleaseDC
GetDC
SetCaretPos
InvalidateRgn
LoadIconW
GetActiveWindow
SetFocus
EnableWindow
CloseDesktop
GetNextDlgTabItem
ShowWindow
FillRect
UpdateWindow
SendMessageW
SetWindowRgn
GetWindowRect
SetWindowLongW
SetWindowPos
GetWindowLongW
GetWindowTextW
GetWindowTextLengthW
ScrollWindowEx
EndPaint
DestroyWindow
GetWindow
KillTimer
MapWindowPoints
CreateAcceleratorTableW
GetClassInfoExW
LockWorkStation
ScrollDC
ClientToScreen
CallWindowProcW
InvalidateRect
DefWindowProcW
GetParent
SystemParametersInfoW

secur32

LsaFreeReturnBuffer

Sections

.text
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

37d00d9cecfda4825b62f9e194410f63

Headers

File Characteristics

Imports

kernel32

advapi32

user32

secur32

Sections

.text Size: 120KB - Virtual size: 119KB

.data Size: 35KB - Virtual size: 47KB

.rdata Size: 3KB - Virtual size: 2KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 120KB - Virtual size: 119KB

.data
Size: 35KB - Virtual size: 47KB

.rdata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 52KB - Virtual size: 51KB