4e23bd681a04f5d969888cbe9cea1b649c12d0d205814fdce5a54bbebad7a21d

Sharing

Copy URL Twitter E-mail

General

Target

4e23bd681a04f5d969888cbe9cea1b649c12d0d205814fdce5a54bbebad7a21d
Size

512KB
MD5

aba05cb0b13a23209f4f9fdb7eb9e944
SHA1

9a827b8077a3f9f9d4a55ba6e2416ddbe13259a0
SHA256

4e23bd681a04f5d969888cbe9cea1b649c12d0d205814fdce5a54bbebad7a21d
SHA512

2900445b133af1a9987780280d0e2eba16792531ceb76bf4c98b52e9692b7daa5051f28b2288c39a3e03b8a838dc0212dfabd0dda8ef4be201fa16a11ad44333
SSDEEP

12288:o6/iG4tbt5202bM0t/0QgPdPTtlytP6D31U77:oKi9L2I40nRpgAU

Score

N/A

Malware Config

Signatures

Files

4e23bd681a04f5d969888cbe9cea1b649c12d0d205814fdce5a54bbebad7a21d
.exe windows x86

b5822436e1ec21e75f2980e5ca2046bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetOEMCP
GetConsoleMode
HeapFree
Sleep
GetFileAttributesA
GlobalAlloc
LCMapStringW
SetFilePointer
GetLocaleInfoA
TlsSetValue
ReadFile
TlsFree
CompareStringW
GlobalUnlock
UnhandledExceptionFilter
FreeEnvironmentStringsW
CreateFileA
InterlockedExchange
LocalUnlock
GetEnvironmentStringsW
MultiByteToWideChar
GetMailslotInfo
ReadConsoleInputA
ConnectNamedPipe
GlobalSize
GetComputerNameW
GetProcAddress
GetProcessHeaps
GetEnvironmentStringsA
WaitForSingleObject
SuspendThread
WaitNamedPipeW
VirtualQueryEx
GetComputerNameA
CreateFileMappingA
OpenMutexA
GetProfileSectionA
EnumCalendarInfoA
GetDriveTypeA
CreateRemoteThread
TlsGetValue
GetProcessShutdownParameters
GetModuleFileNameA
GlobalHandle
EnumSystemLocalesA
SetLastError
HeapAlloc
FreeEnvironmentStringsA
GetTickCount
GetStdHandle
lstrlenW
HeapReAlloc
InterlockedIncrement
FileTimeToDosDateTime
GetCurrentDirectoryW
ExitProcess
SetLocaleInfoW
lstrcpynW
WideCharToMultiByte
WriteConsoleW
SetStdHandle
CloseHandle
CompareStringA
RemoveDirectoryA
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
WaitForMultipleObjects
GetStartupInfoA
SetThreadAffinityMask
GetStringTypeW
WritePrivateProfileStringW
GetModuleHandleW
SetVolumeLabelA
InterlockedDecrement
TerminateProcess
LoadLibraryExW
GetSystemDirectoryA
HeapSize
VirtualQuery
GetFileType
VirtualFree
VirtualFreeEx
GetCurrentProcessId
QueryPerformanceCounter
GetTimeFormatA
CreateMutexA
GetStringTypeA
GetEnvironmentStrings
SetUnhandledExceptionFilter
LCMapStringA
HeapDestroy
FoldStringA
SetConsoleCtrlHandler
FlushFileBuffers
LeaveCriticalSection
SetConsoleCursorInfo
IsValidCodePage
SetConsoleWindowInfo
WritePrivateProfileStringA
ReadConsoleOutputCharacterA
OpenWaitableTimerA
FreeLibrary
GetCurrentProcess
SetHandleCount
GetConsoleTitleW
GlobalGetAtomNameA
GetSystemTimeAsFileTime
VirtualAlloc
GetPrivateProfileStructW
RtlUnwind
WriteConsoleOutputW
WriteConsoleA
GetConsoleCP
EnumSystemLocalesW
DebugBreak
EnterCriticalSection
SetEnvironmentVariableA
IsValidLocale
TlsAlloc
GlobalUnfix
FindNextFileA
OutputDebugStringA
LoadLibraryA
lstrcatA
FindFirstFileExA
IsDebuggerPresent
GetDateFormatA
WriteFile
GetLocaleInfoW
TerminateThread
GetConsoleOutputCP
GetCurrentThreadId
HeapCreate
GetCommandLineA
LoadResource
SetConsoleTextAttribute
DeleteCriticalSection
GetCPInfo
GetUserDefaultLCID
GetModuleHandleA
LocalFileTimeToFileTime
OpenEventW
GetProfileSectionW
CreateNamedPipeW
ExitThread
GetFileAttributesExW
WriteConsoleInputA
GetACP
GetCurrentThread
VirtualUnlock

shell32

SHGetFileInfo
ShellAboutW
SHGetSpecialFolderLocation
DoEnvironmentSubstA
SHGetPathFromIDListA

comdlg32

ReplaceTextA

comctl32

CreateToolbarEx
ImageList_Remove
CreatePropertySheetPageA
ImageList_SetBkColor
ImageList_SetImageCount
CreatePropertySheetPageW
DestroyPropertySheetPage
ImageList_SetFilter
MakeDragList
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetBkColor
ImageList_DrawEx
ImageList_DragLeave
InitCommonControlsEx
ImageList_LoadImage
ImageList_Merge
ImageList_Replace
ImageList_EndDrag
ImageList_Create
ImageList_Write
CreateMappedBitmap
ImageList_GetFlags

wininet

CreateUrlCacheGroup
InternetQueryOptionW

user32

ShowWindow
BroadcastSystemMessageA
MonitorFromPoint
SendMessageTimeoutA
MessageBoxA
BroadcastSystemMessageW
CallMsgFilterW
DefFrameProcA
RealGetWindowClass
CreateMDIWindowW
DestroyWindow
TranslateMessage
CountClipboardFormats
RegisterClassA
GetClassNameW
RegisterClassExA
RegisterClassW
DefWindowProcA
MapVirtualKeyW
DdeDisconnect
SendIMEMessageExA
EnumDesktopsW
SetMenuItemInfoW
CreateWindowExA

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5822436e1ec21e75f2980e5ca2046bc

Headers

File Characteristics

Imports

kernel32

shell32

comdlg32

comctl32

wininet

user32

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 260KB - Virtual size: 257KB

.data Size: 108KB - Virtual size: 135KB

.rsrc Size: 40KB - Virtual size: 37KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 260KB - Virtual size: 257KB

.data
Size: 108KB - Virtual size: 135KB

.rsrc
Size: 40KB - Virtual size: 37KB