553dc921604d7837bee08a9e1ecdd7a2299355c9cb7985d04c5e5367866181ab

Sharing

Copy URL

Twitter E-mail

General

Target

553dc921604d7837bee08a9e1ecdd7a2299355c9cb7985d04c5e5367866181ab
Size

57KB
MD5

84b6c6260e09970104c45f1d12c95820
SHA1

4142544b9c8d9c0735e8b6ba86578541a05090c5
SHA256

553dc921604d7837bee08a9e1ecdd7a2299355c9cb7985d04c5e5367866181ab
SHA512

0819b89a3bf4373ef55de4d97c9c90cc83e467007fafb9928535b90913b1dc063c07d91bd6d107af4cd0dfcbab1340b7868697f62a4ba3916b2d00ca20b53664
SSDEEP

1536:4c+gdLv5ETz8OhKoEjXQspbK0o9zPbJZIvDEr9:7DKEjPpO0o9jF

Score

N/A

Malware Config

Signatures

Files

553dc921604d7837bee08a9e1ecdd7a2299355c9cb7985d04c5e5367866181ab
.exe windows x86

f730978001de23973a12a670cf00de70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

OpenClipboard
SetClipboardData
CreateWindowExA
GetClipboardData
LoadCursorA
LoadIconA
DispatchMessageA

urlmon

CreateFormatEnumerator
RegisterFormatEnumerator
RegisterMediaTypes

kernel32

GetStringTypeW
GetStringTypeA
GetCPInfo
HeapCreate
WaitForSingleObject
WideCharToMultiByte
SetThreadLocale
GetSystemDefaultLCID
CompareStringA
GetCPInfoExA
LocalHandle
HeapDestroy
OpenSemaphoreA
GlobalUnlock
GetACP
GetModuleHandleA
GetProcAddress
VirtualAlloc
HeapReAlloc
GetLastError
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetEndOfFile
LoadLibraryA
GetOEMCP
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
SetStdHandle
CreateFileA
CloseHandle
RtlUnwind
VirtualFree
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetFullPathNameA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
EnterCriticalSection
LeaveCriticalSection
WriteFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
GetCurrentDirectoryA
GetDriveTypeA
HeapFree
HeapAlloc
InitializeCriticalSection
ReadFile

activeds

ord13

wtsapi32

WTSOpenServerA
WTSEnumerateServersA
WTSEnumerateProcessesA
WTSEnumerateSessionsA

uxtheme

GetThemeSysColor
GetThemeFilename
GetThemeInt
GetThemeMargins
GetThemeSysInt
GetCurrentThemeName
GetThemeSysBool
GetThemeSysSize
GetThemeEnumValue
ord47
GetWindowTheme
GetThemeBool
EnableThemeDialogTexture

usp10

ScriptItemize
ScriptShape
ScriptCacheGetHeight
ScriptStringAnalyse
ScriptString_pcOutChars
ScriptStringXtoCP
ScriptStringValidate
ScriptGetGlyphABCWidth
ScriptCPtoX
ScriptJustify
ScriptStringOut
ScriptStringCPtoX

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nijrph
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f730978001de23973a12a670cf00de70

Headers

File Characteristics

Imports

user32

urlmon

kernel32

activeds

wtsapi32

uxtheme

usp10

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 3KB - Virtual size: 46KB

.nijrph Size: 19KB - Virtual size: 18KB

.rsrc Size: 512B - Virtual size: 16B

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 3KB - Virtual size: 46KB

.nijrph
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 512B - Virtual size: 16B