c47e66068f42659e1b557bec0f5cd67cb8659d7900b46fd05050e54db86b91c7

Sharing

Copy URL Twitter E-mail

General

Target

c47e66068f42659e1b557bec0f5cd67cb8659d7900b46fd05050e54db86b91c7
Size

248KB
MD5

aa1d37b7ec2b9a4bcae7649bdb643f70
SHA1

fcfada385c9dc7176c851377773c4bd5dd2581a6
SHA256

c47e66068f42659e1b557bec0f5cd67cb8659d7900b46fd05050e54db86b91c7
SHA512

d6ab2106fd9df6f43617a84581355d30b9decfbf3661f98d4a8ea874d6586c46b6d3ef84aeafee384203c70dba7fdab4e94a441e5629056eca3b8e31c896cf5d
SSDEEP

3072:HTRG8V31WUH3Ht+0DfZzsI9Lv0Jh8tlE/iEbDezZ0BaYfxf1dAM+MO/mZT7obY:HVGSWUH3jZzseYh8tlgijF0c6zR96Y

Score

N/A

Malware Config

Signatures

Files

c47e66068f42659e1b557bec0f5cd67cb8659d7900b46fd05050e54db86b91c7
.exe windows x86

60d981c8b680878486acafb75be4156d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorW
GetMouseMovePointsEx
GetCursorPos
EndPaint
CharToOemBuffW
GetClassLongA
DrawTextW
CallWindowProcA
ModifyMenuA
UpdateWindow
GetDlgItemTextA
GetMenuCheckMarkDimensions
InvertRect
GetAsyncKeyState
IsDialogMessageA
SetForegroundWindow
ReleaseDC
EqualRect
GetDoubleClickTime
GetClipboardData
MapWindowPoints
SetDlgItemTextW
SendMessageA
CreateWindowExA
GetUserObjectInformationA

ole32

CoCreateInstance
OleDestroyMenuDescriptor

advapi32

AdjustTokenPrivileges
RegDeleteValueA

gdi32

PtVisible
SaveDC
GetMapMode
GetICMProfileW
GetStretchBltMode
GetObjectType
SetICMProfileA
SetTextColor
GetClipBox
Polygon
PolyPolyline
SetWindowOrgEx
GetWindowOrgEx
GetCharABCWidthsFloatW
GetColorSpace
GetNearestPaletteIndex
ExtTextOutW
SetStretchBltMode
GetGlyphOutlineA
SetViewportExtEx
GetPolyFillMode
GetObjectA

kernel32

WriteConsoleA
GetConsoleOutputCP
SetFilePointer
WriteConsoleW
MultiByteToWideChar
CreateFileA
LoadLibraryA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetEndOfFile
ReadFile
HeapSize
InitializeCriticalSectionAndSpinCount
MulDiv
GetWriteWatch
ConvertThreadToFiber
SetHandleCount
LocalAlloc
GetProcessHeap
TlsSetValue
lstrcpynW
GetOEMCP
SuspendThread
WideCharToMultiByte
GetModuleHandleW
GetDiskFreeSpaceExW
FindResourceExW
GetSystemDirectoryW
CompareFileTime
GlobalReAlloc
GetVolumeInformationA
LCMapStringA
CreateMutexA
BeginUpdateResourceW
DecodePointer
IsBadWritePtr
MapViewOfFile
TerminateThread
GetFileAttributesW
CloseHandle
GetFileAttributesA
GetSystemInfo
GetCommandLineA
GetStartupInfoA
GetLastError
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
GetStdHandle
GetFileType
DeleteCriticalSection
SetStdHandle
WriteFile
GetConsoleCP
GetConsoleMode
RtlUnwind
Sleep
GetProcAddress
ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
TlsGetValue
TlsAlloc
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapAlloc
VirtualAlloc
HeapReAlloc
FlushFileBuffers
GetCPInfo
GetACP
IsValidCodePage

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 157KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60d981c8b680878486acafb75be4156d

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

advapi32

gdi32

kernel32

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 14KB - Virtual size: 133KB

.rsrc Size: 157KB - Virtual size: 157KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 14KB - Virtual size: 133KB

.rsrc
Size: 157KB - Virtual size: 157KB