323c8fe606c8a896caf9da387e73660d4a2cda445119d90683335a3254800b8c

Sharing

Copy URL Twitter E-mail

General

Target

323c8fe606c8a896caf9da387e73660d4a2cda445119d90683335a3254800b8c
Size

360KB
MD5

cc6e8110027736200c8c05b5dba63552
SHA1

5f73ff8aa7222701ee78effea2f0861d7f9e8443
SHA256

323c8fe606c8a896caf9da387e73660d4a2cda445119d90683335a3254800b8c
SHA512

e58642509db8fe8ff0fe33b65215b483f0c7149e1ae51ae7349182a1cf3ec03ca1b5558ee52f5815dd2866bd225c7e46ce39d50b779260618099f3f7881065b5
SSDEEP

6144:KdnENugecVbeC99Tnw0WiQy8KRdzIP3eRnslX:KdnENxVlPcKRVq3eA

Score

N/A

Malware Config

Signatures

Files

323c8fe606c8a896caf9da387e73660d4a2cda445119d90683335a3254800b8c
.exe windows x86

b20c675c2d70cdabd77f3bc7576e1b36

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

GopherGetAttributeA
InternetInitializeAutoProxyDll
IsUrlCacheEntryExpiredA
UrlZonesDetach
FindNextUrlCacheEntryA
InternetCloseHandle

comdlg32

PageSetupDlgW

comctl32

DrawStatusTextA
ImageList_AddIcon
CreateMappedBitmap
DrawStatusText
ImageList_SetImageCount
CreatePropertySheetPageA
ImageList_SetBkColor
DestroyPropertySheetPage
ImageList_Draw
InitCommonControlsEx
ImageList_SetIconSize
DrawInsert
ImageList_SetOverlayImage
ImageList_SetDragCursorImage
InitMUILanguage
ImageList_Replace
MakeDragList
ImageList_LoadImage
GetEffectiveClientRect
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_GetFlags

kernel32

GetThreadTimes
GetEnvironmentStrings
GetTimeFormatW
CreateWaitableTimerA
GetStdHandle
GetFileType
GetConsoleMode
lstrlen
AllocConsole
CreateMutexA
GetConsoleOutputCP
WideCharToMultiByte
EnumResourceLanguagesW
GetConsoleCP
TerminateProcess
WriteConsoleW
GetFileAttributesW
GetStringTypeW
GetACP
SetHandleCount
GetCPInfo
WaitForDebugEvent
GetLogicalDriveStringsW
GetFullPathNameW
IsValidCodePage
TlsFree
SetStdHandle
lstrcmpA
CompareStringA
SetThreadAffinityMask
SetLocaleInfoW
GetStringTypeA
GetDriveTypeA
FreeLibrary
GlobalFindAtomA
UnhandledExceptionFilter
FreeEnvironmentStringsW
TlsAlloc
GetUserDefaultLCID
RemoveDirectoryW
HeapValidate
EnumCalendarInfoW
IsValidLocale
WriteFile
HeapDestroy
GlobalDeleteAtom
HeapReAlloc
GetLocaleInfoW
GlobalHandle
OpenMutexA
ReadConsoleOutputAttribute
GetLastError
GetCompressedFileSizeA
FlushFileBuffers
SetConsoleTitleA
GetLongPathNameW
QueryPerformanceCounter
SetEnvironmentVariableA
WriteConsoleA
TlsGetValue
LCMapStringW
CompareStringW
GetStartupInfoA
SetUnhandledExceptionFilter
DosDateTimeToFileTime
CreatePipe
EnumSystemLocalesA
WriteConsoleInputA
SetLocalTime
LCMapStringA
CreateProcessA
GlobalAddAtomA
InitializeCriticalSection
GetDateFormatA
SetFilePointer
LocalSize
LeaveCriticalSection
HeapFree
FreeEnvironmentStringsA
GetTimeZoneInformation
EnumDateFormatsW
GetThreadPriorityBoost
Sleep
GetCurrentThread
InterlockedIncrement
EnumDateFormatsA
GetOEMCP
GetProcessHeap
WriteConsoleOutputCharacterA
CloseHandle
lstrcmp
WritePrivateProfileStructW
IsDebuggerPresent
EnterCriticalSection
GetModuleHandleA
GetCurrentProcessId
VirtualQuery
DeleteCriticalSection
InterlockedDecrement
OutputDebugStringA
SetThreadIdealProcessor
TlsSetValue
HeapCreate
GetEnvironmentStringsW
VirtualAlloc
VirtualFree
MultiByteToWideChar
RtlUnwind
CreateEventA
CreateNamedPipeW
GetSystemTimeAdjustment
GetCurrentProcess
InterlockedExchange
GetCurrentThreadId
LocalFileTimeToFileTime
ConnectNamedPipe
GetCommandLineA
ReadFile
FillConsoleOutputAttribute
WritePrivateProfileSectionW
CreateProcessW
GetTimeFormatA
HeapAlloc
CompareFileTime
GetTickCount
GetThreadSelectorEntry
GlobalCompact
ExitProcess
GetProcAddress
EnumTimeFormatsA
RtlFillMemory
LocalUnlock
SetEvent
GetVersionExA
LoadLibraryW
lstrcmpiW
LoadLibraryA
SetLastError
GetEnvironmentVariableW
GetSystemTimeAsFileTime
HeapSize
RemoveDirectoryA
GetNumberFormatW
SetPriorityClass
GetLocaleInfoA
CreateFileA
GetModuleFileNameA
GetProcessAffinityMask
SetConsoleCtrlHandler

user32

SetMenuItemBitmaps
DefMDIChildProcA
GetGUIThreadInfo
ShowWindow
EnumWindowStationsW
DefWindowProcA
GetAsyncKeyState
CreateWindowExA
GetMenuItemCount
GetQueueStatus
RegisterClassW
SetWindowsHookExW
LoadStringA
CharLowerW
MapDialogRect
GetMonitorInfoA
ChangeMenuW
RegisterClassA
DdeNameService
GetMessageW
CallMsgFilterA
DestroyWindow
ScrollDC
GetClassWord
RegisterClassExA
DlgDirSelectComboBoxExA
GetWindowWord
GetKeyboardLayoutNameW
MessageBoxW
DragObject

Sections

.text
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b20c675c2d70cdabd77f3bc7576e1b36

Headers

File Characteristics

Imports

wininet

comdlg32

comctl32

kernel32

user32

Sections

.text Size: 136KB - Virtual size: 132KB

.rdata Size: 100KB - Virtual size: 96KB

.data Size: 96KB - Virtual size: 106KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 136KB - Virtual size: 132KB

.rdata
Size: 100KB - Virtual size: 96KB

.data
Size: 96KB - Virtual size: 106KB

.rsrc
Size: 24KB - Virtual size: 20KB