b89746c076e7e6bb05678f54d892c7968d9eaaae25e48bd485f28ea0f7b254a8

Sharing

Copy URL Twitter E-mail

General

Target

b89746c076e7e6bb05678f54d892c7968d9eaaae25e48bd485f28ea0f7b254a8
Size

361KB
MD5

8abb56977ea4b90f719649316d66d402
SHA1

f0abc0d70d12eefa46706a0997d4caf7814a9e8e
SHA256

b89746c076e7e6bb05678f54d892c7968d9eaaae25e48bd485f28ea0f7b254a8
SHA512

2dd7a625f7a2c8920e5c298482a7c2822a927363e06edf7a89c9fa8bb30ba4d919b0a1a7c880450009a5740929f995e1a589fe5c1c89385f0da629751e2b970b
SSDEEP

6144:mfwwAWhWLFmJTomOzUkN7pZwEYOh5S8siHs0yGdaIDQNl1aar8UZ4smxknp:MJWJmJTomOzBN7pZPYOh5S8siRdBQNl1

Score

N/A

Malware Config

Signatures

Files

b89746c076e7e6bb05678f54d892c7968d9eaaae25e48bd485f28ea0f7b254a8
.exe windows x86

a338cad8619687bd2139667adaaff1e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InSendMessageEx
CreateWindowExA
DestroyIcon
ModifyMenuW
ToAsciiEx
FindWindowA
OemToCharW
DragDetect
SetDebugErrorLevel
GetUserObjectInformationA
GetParent
SetClipboardViewer
DefMDIChildProcW
ShowWindow
GetFocus
RegisterClassA
SwitchToThisWindow
MapDialogRect
GetMessageA
SetForegroundWindow
DestroyWindow
CopyImage
SetWindowWord
GetClientRect
LoadMenuA
MapVirtualKeyW
GetComboBoxInfo
FlashWindowEx
RegisterClassExA
MessageBoxW
CreateDialogParamA
DefWindowProcA
MoveWindow
CreateIconIndirect
SendIMEMessageExA
SetScrollRange
OffsetRect
EnumPropsExW
SetCapture

shell32

SHGetSpecialFolderPathW
SHGetFileInfoW
ExtractIconExA

gdi32

GetLogColorSpaceA
DeviceCapabilitiesExA
UpdateICMRegKeyW
GetCharWidthFloatW
GetROP2
CreateHalftonePalette
PolyPolygon
PolyDraw
CreateFontIndirectW

advapi32

CryptGenKey
RegOpenKeyExW
RegEnumKeyExA
RegQueryValueA
CryptEnumProvidersA
RegNotifyChangeKeyValue
CryptEnumProvidersW
GetUserNameA
CryptGetProvParam
CryptGetDefaultProviderA
LookupPrivilegeValueA
CryptSignHashA
RegEnumKeyExW
RegFlushKey
CryptExportKey

comctl32

ImageList_Destroy
InitCommonControlsEx
ImageList_GetImageCount
ImageList_SetOverlayImage
MakeDragList
ImageList_AddIcon
ImageList_SetImageCount
InitMUILanguage
CreateToolbar
ImageList_ReplaceIcon
ImageList_DragLeave
ImageList_Add
DrawInsert
ImageList_DragEnter
CreateToolbarEx
CreateMappedBitmap
CreatePropertySheetPage

kernel32

lstrcpynW
SetFilePointer
VirtualLock
CompareStringW
GetProcAddress
SetComputerNameA
GetModuleHandleW
GetCurrentProcessId
GetTimeFormatA
EnumDateFormatsExW
TlsSetValue
ExitThread
GetThreadContext
SetConsoleCtrlHandler
FreeEnvironmentStringsW
QueryPerformanceCounter
OpenWaitableTimerW
EnterCriticalSection
HeapReAlloc
LCMapStringW
UnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
EnumSystemLocalesA
HeapSize
GetUserDefaultLCID
SetEnvironmentVariableA
HeapCreate
InterlockedIncrement
GetConsoleCP
GetEnvironmentVariableA
GetStringTypeW
RtlUnwind
MultiByteToWideChar
Sleep
HeapFree
GetLocaleInfoA
GetOEMCP
VirtualAlloc
GetLastError
SetConsoleOutputCP
FillConsoleOutputAttribute
GetACP
WriteConsoleA
GetDateFormatA
CompareStringA
FindAtomW
SetStdHandle
GetConsoleCursorInfo
SetUnhandledExceptionFilter
GetCommandLineW
GetFileType
GetCalendarInfoW
lstrcmpi
TerminateProcess
SetHandleCount
GetModuleHandleA
GetAtomNameA
TlsAlloc
GetNumberFormatW
GetCurrentProcess
IsDebuggerPresent
GetSystemDirectoryW
SetEndOfFile
TlsFree
GetCurrentThread
GetConsoleOutputCP
GetConsoleMode
FreeEnvironmentStringsA
GetCurrentThreadId
ReadFile
UnmapViewOfFile
IsValidLocale
SetLocaleInfoW
GetSystemDefaultLCID
WideCharToMultiByte
GetThreadPriorityBoost
OpenMutexA
CloseHandle
LocalCompact
GetStringTypeA
TlsGetValue
ExitProcess
IsValidCodePage
InterlockedExchange
DeleteCriticalSection
WriteConsoleW
GetStartupInfoA
LCMapStringA
VirtualFree
EnumResourceTypesA
VirtualQuery
LeaveCriticalSection
GetStartupInfoW
FlushFileBuffers
HeapAlloc
MoveFileA
LoadLibraryA
GetModuleFileNameW
GetStdHandle
InterlockedDecrement
CreateFileA
GetTimeZoneInformation
HeapDestroy
GetCommandLineA
GetTickCount
GlobalUnfix
GetCPInfo
GetSystemTimeAsFileTime
SetConsoleTextAttribute
FreeLibrary
GetEnvironmentStringsW
SetLastError
FindResourceExW
CreateMutexA
GetLocaleInfoW
WriteFile
LoadLibraryExW
GetModuleFileNameA

wininet

FindNextUrlCacheContainerW
IsUrlCacheEntryExpiredW
InternetFortezzaCommand
RetrieveUrlCacheEntryStreamA
FindNextUrlCacheEntryW
FtpGetCurrentDirectoryA
InternetReadFileExA
InternetConnectA

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a338cad8619687bd2139667adaaff1e2

Headers

File Characteristics

Imports

user32

shell32

gdi32

advapi32

comctl32

kernel32

wininet

Sections

.text Size: 149KB - Virtual size: 148KB

.rdata Size: 75KB - Virtual size: 74KB

.data Size: 93KB - Virtual size: 99KB

.rsrc Size: 43KB - Virtual size: 42KB

.text
Size: 149KB - Virtual size: 148KB

.rdata
Size: 75KB - Virtual size: 74KB

.data
Size: 93KB - Virtual size: 99KB

.rsrc
Size: 43KB - Virtual size: 42KB