65821b3a61d18bf3a6af8bb570579835b8e4cebf024bab7bece2c85b78ff9390

Sharing

Copy URL Twitter E-mail

General

Target

65821b3a61d18bf3a6af8bb570579835b8e4cebf024bab7bece2c85b78ff9390
Size

180KB
MD5

838cd029910a1768c4906782e88aa790
SHA1

57cfc4a743a4380badda8cd2ede29028196ae081
SHA256

65821b3a61d18bf3a6af8bb570579835b8e4cebf024bab7bece2c85b78ff9390
SHA512

18043f0a819b441b16bc25916e1329a231dc116ec94517b6c658a44b81da063b2b1a443c866d2f5bc6e9590e66ed499453dbb6d4128de988653dae09f5ebea12
SSDEEP

3072:i5JcFgftG4anGxXz+nBYKzJboG3IQlKW8nLLjLYEZ4v:ifcytBtsjxoGYl9nL0EZ4v

Score

N/A

Malware Config

Signatures

Files

65821b3a61d18bf3a6af8bb570579835b8e4cebf024bab7bece2c85b78ff9390
.exe windows x86

a3af64e68cfb55f8f6aae81102982b26

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsContentTypeA

kernel32

CreateFileMappingW
QueryDosDeviceW
GetShortPathNameW
FileTimeToLocalFileTime
ExitThread
DefineDosDeviceW
lstrcatW
FormatMessageA
SetStdHandle
DebugActiveProcess
GetSystemDefaultUILanguage
GetSystemDefaultLCID
OutputDebugStringW
GetDriveTypeA
CreateSemaphoreA
WritePrivateProfileSectionW
GetProfileIntA
SetLastError
GetPrivateProfileStringW
FlushConsoleInputBuffer

user32

CharPrevW
DrawTextA
DdeAddData
DispatchMessageW
RegisterDeviceNotificationA
GetMessagePos
GetClipboardOwner
CheckMenuItem
SetMenuItemInfoA
LoadImageA
SetMenuDefaultItem
IsWindow
GetActiveWindow
SendMessageTimeoutA
DestroyCursor
SetClassLongA
DdeUninitialize
SetDlgItemInt
GetForegroundWindow
GetClassLongW
FindWindowW
DefFrameProcA
GetProcessWindowStation
IsClipboardFormatAvailable
DialogBoxParamW
TabbedTextOutW
ShowWindowAsync
TrackPopupMenu
MapVirtualKeyW
AdjustWindowRectEx
GetUserObjectInformationW
UnregisterHotKey

gdi32

UnrealizeObject
GetStockObject
GetObjectW
CreateFontA

ntdll

_allmul
_allshl
_aullrem
_aullshr
_aulldiv

Exports

Exports

?AmusHyteInroLaws@@YGKEPCUtagRECT@@ACUFicofiatEarn@@ACUSuetfeudPactPikeid@@UVeesPopelambCopsaa@@PCN@Z
?RoodKivaViedLesshersWoreto@@YGEXZ
?VibePlusRifeHensOrbyef@@YGXACIPCMGACG_JPCDACM@Z

Sections

.itext
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3af64e68cfb55f8f6aae81102982b26

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

ntdll

Exports

Exports

Sections

.itext Size: 2KB - Virtual size: 2KB

.rsrc Size: 25KB - Virtual size: 25KB

.text Size: 138KB - Virtual size: 137KB

.reloc Size: 13KB - Virtual size: 12KB

.itext
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 25KB - Virtual size: 25KB

.text
Size: 138KB - Virtual size: 137KB

.reloc
Size: 13KB - Virtual size: 12KB