6747755eb92c51f4c8dad1dffd2a0f804ee367df5c735152344df3c2e6be2256

Sharing

Copy URL Twitter E-mail

General

Target

6747755eb92c51f4c8dad1dffd2a0f804ee367df5c735152344df3c2e6be2256
Size

507KB
MD5

b0840c56b347a6e94d9e699bb2f1875f
SHA1

f4bb358ea84f1ac38e5e0a97df76f6c88f33ae76
SHA256

6747755eb92c51f4c8dad1dffd2a0f804ee367df5c735152344df3c2e6be2256
SHA512

5c600f747c5786c8f1207f090d974a168dd50f171c37c7dd4dafde88055ec91a6a4b62b02c2874e02d26c4068f457bbb6a0776ad132e6790af6c7b24d4f29a69
SSDEEP

12288:ooob9bbbbbbbboooboOoboO9oziIdUTksh1bu1F8WDIGPe2gXwGVEhoNdkYvnVoS:TdUTF1bKE04wC6orVafazP

Score

N/A

Malware Config

Signatures

Files

6747755eb92c51f4c8dad1dffd2a0f804ee367df5c735152344df3c2e6be2256
.exe windows x86

6e4e2d08b9f33316ee78ea2b82d7423e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_SYSTEM
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

CreateFileW
SetStdHandle
RaiseException
GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
MultiByteToWideChar
LCMapStringW
RtlUnwind
LoadLibraryW
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
HeapFree
CloseHandle
HeapSize
HeapReAlloc
WriteFile
HeapAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
ExitProcess
GetModuleHandleW
DecodePointer
InterlockedDecrement
InterlockedIncrement
GetSystemTimeAsFileTime
GetCurrentProcessId
lstrcpyA
lstrcpyW
LocalFree
GetModuleHandleA
LocalAlloc
LoadLibraryA
GetProcessHeaps
GetProcAddress
GetLastError
SetConsoleTitleA
lstrlenW
LocalReAlloc
HeapQueryInformation
GetVolumeInformationA
GetCurrentThreadId
FlushFileBuffers
GetTickCount
QueryPerformanceCounter
GetModuleFileNameW
IsBadReadPtr
HeapValidate
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
HeapCreate
FreeLibrary
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount

user32

GetDC
SetMenuItemInfoA
FindWindowA
LoadImageA
DestroyWindow
GetSystemMenu
ScreenToClient
GetWindowRect
FillRect
GetMenuItemID
LoadImageW
UnregisterClassW
GetSubMenu
DeleteMenu
LoadCursorW
DdeInitializeA
wsprintfA
FindWindowExA
GetClientRect
SendMessageA
SetWindowTextA
DrawEdge
LoadAcceleratorsW
GetMenu
RegisterClassExW
LoadIconW
SetRect
SetWindowLongA
ReleaseDC
GetMenuState
GetDlgItem
EndDialog
GetSysColor
GetCursorPos
GetMenuItemInfoA
GetMenuStringA
ShowWindow
GetSysColorBrush
GetMenuItemCount
CreateWindowExW

gdi32

DeleteDC
CreateDIBSection
GetDeviceCaps
GdiFlush
DeleteObject
SelectObject
CreateCompatibleDC
CreatePen
GetObjectA
GetStockObject
EnumFontsA

shell32

ShellExecuteA

ole32

OleInitialize
OleUninitialize
OleCreate
OleSetContainedObject

winscard

SCardGetAttrib

shlwapi

PathCompactPathA

comctl32

ord16

Exports

Exports

Ip

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 382KB - Virtual size: 381KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gave
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e4e2d08b9f33316ee78ea2b82d7423e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

winscard

shlwapi

comctl32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 382KB - Virtual size: 381KB

.data Size: 5KB - Virtual size: 12KB

.gave Size: 6KB - Virtual size: 5KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 382KB - Virtual size: 381KB

.data
Size: 5KB - Virtual size: 12KB

.gave
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 12KB - Virtual size: 12KB