f139975740b178efe556b210588f1ac935b6a03a066579caeec7cbf35413c9d6

Sharing

Copy URL Twitter E-mail

General

Target

f139975740b178efe556b210588f1ac935b6a03a066579caeec7cbf35413c9d6
Size

768KB
MD5

23587b6669cb851a65555675fffcb320
SHA1

7ff7e37a96c2f199493ae0a0fef42ea14e957eb5
SHA256

f139975740b178efe556b210588f1ac935b6a03a066579caeec7cbf35413c9d6
SHA512

ccec977d30f261549dc8b5e82f81cc137629cbe21561667e7725b3e834da8636e0fbb70d9552ce37c1fb96f5e3a2456d27e748cde8b51001689ab67d06d66d73
SSDEEP

24576:WkJBkJmWen36QwipZhZgBhmocmGQOCBJyHZYuOco9D:WyBkMWenKQwipZhZgBhmocmGQOCBgHZq

Score

N/A

Malware Config

Signatures

Files

f139975740b178efe556b210588f1ac935b6a03a066579caeec7cbf35413c9d6
.exe windows x86

291e60117481f62d2d52d4668079d708

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetConsoleScreenBufferInfo
GetSystemInfo
EnumDateFormatsA
FindFirstChangeNotificationA
FillConsoleOutputAttribute
GetCurrentThreadId
CloseHandle
GetCurrentProcessId
WriteConsoleW
GetProcessHeap
SetEndOfFile
SetFilePointer
SetStdHandle
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LoadLibraryA
HeapSize
GetFileAttributesW
Sleep
HeapFree
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
LoadLibraryW
GetProcAddress
GetLastError
GetStdHandle
GlobalUnlock
HeapReAlloc
ReadFile
SetConsoleCursorPosition
GlobalAlloc
FindCloseChangeNotification
WaitForSingleObject
GlobalLock
GetCurrentProcess
HeapAlloc
DeleteCriticalSection
LCMapStringW
WideCharToMultiByte
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
CreateFileW
EnterCriticalSection
GlobalMemoryStatus
GetFileSize
CreateFileA
FillConsoleOutputCharacterA
HeapCreate
GetModuleFileNameW
WriteFile
MultiByteToWideChar
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError

user32

GetSystemMetrics
GetWindow
DestroyWindow
GetUserObjectInformationA
IsIconic
FillRect
GetKeyState
GetMenuCheckMarkDimensions
GetWindowTextLengthA
SendMessageA
GetCursorInfo
SetWindowLongA
MessageBoxA
GetWindowLongA
GetClassNameW
SendDlgItemMessageW
GetDesktopWindow
GetSysColor
GetSysColorBrush
CreateDialogParamW

gdi32

SetBkColor
SelectObject
CreatePen
SetTextColor

advapi32

OpenSCManagerA
CredEnumerateA

shell32

SHGetFileInfoA

ole32

CreateStreamOnHGlobal

oleaut32

OleSavePictureFile
OleLoadPicture
SafeArrayAllocDescriptor

msacm32

acmMetrics

comctl32

ImageList_Create

dbghelp

EnumerateLoadedModules

uxtheme

SetWindowTheme

Sections

.text
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sidata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tss
Size: 512B - Virtual size: 223B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

291e60117481f62d2d52d4668079d708

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

msacm32

comctl32

dbghelp

uxtheme

Sections

.text Size: 648KB - Virtual size: 648KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 4KB - Virtual size: 11KB

.sidata Size: 4KB - Virtual size: 4KB

.tss Size: 512B - Virtual size: 223B

.rsrc Size: 86KB - Virtual size: 85KB

.text
Size: 648KB - Virtual size: 648KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 4KB - Virtual size: 11KB

.sidata
Size: 4KB - Virtual size: 4KB

.tss
Size: 512B - Virtual size: 223B

.rsrc
Size: 86KB - Virtual size: 85KB