6bfd7bbae7154192e0cb5b2583ca437ba9b1b1b4575d1c9e7e759f6577c37491

Sharing

Copy URL Twitter E-mail

General

Target

6bfd7bbae7154192e0cb5b2583ca437ba9b1b1b4575d1c9e7e759f6577c37491
Size

924KB
MD5

ef08b8cf92ac41ca7831fe8eabe11d9a
SHA1

f1092782170558809dd28c8ea8a2b732d869971a
SHA256

6bfd7bbae7154192e0cb5b2583ca437ba9b1b1b4575d1c9e7e759f6577c37491
SHA512

cc472563197283270bb3cda111e32e35c6c9f1c668dd5075b351424898968e882b0908e577d5f5cd0e2d65189d2700338bf0e586ff1cfb92e2d26fac56945a02
SSDEEP

12288:QJ3fRhoI2k/eY6J8+gurv5kMKU3Rbg5ooP8QAZ/uHL/oWdporlp3wfnOHjLdwmI:M3f3o+2e+gQxkMKgR08NZ/g5IUod

Score

N/A

Malware Config

Signatures

Files

6bfd7bbae7154192e0cb5b2583ca437ba9b1b1b4575d1c9e7e759f6577c37491
.exe windows x86

c64f9e581e79dbf3f445e598066b6335

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendNotifyMessageW
CharLowerW
CharLowerBuffA
DrawTextExW
GetWindowModuleFileNameW
RegisterClassExA
SystemParametersInfoW
PostThreadMessageA
DrawStateW
EnumDisplaySettingsExA
DestroyWindow
SendMessageTimeoutA
GetUserObjectInformationW
GetDC
DdeAccessData
DdeGetLastError
SetActiveWindow
GetShellWindow
SystemParametersInfoA
SetMessageExtraInfo
EnumPropsA
ReleaseDC
GetParent
ShowWindow
SetWindowWord
ScreenToClient
DdeImpersonateClient
TranslateAcceleratorW
OpenDesktopA
DefWindowProcA
MessageBoxExA
CreateWindowExW
AnimateWindow
CopyAcceleratorTableW
RegisterClassA
MessageBoxA
MessageBoxExW
MsgWaitForMultipleObjects
InvalidateRgn
EnumDisplaySettingsW
SendInput
DragObject

comctl32

ImageList_DragEnter
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_Create
ImageList_AddMasked
ImageList_Destroy
DrawStatusTextA
ImageList_DrawEx
InitCommonControlsEx
ImageList_AddIcon
DrawStatusTextW
ImageList_SetOverlayImage
ImageList_GetIcon
ImageList_GetDragImage
CreateStatusWindowA
CreateMappedBitmap
ImageList_GetImageCount
ImageList_DrawIndirect
ImageList_SetDragCursorImage
ImageList_LoadImageA
ImageList_GetFlags

kernel32

IsValidLocale
GetModuleHandleW
GlobalLock
OpenWaitableTimerW
GetModuleHandleA
SetConsoleCursorInfo
ExpandEnvironmentStringsW
InterlockedIncrement
GetStdHandle
GetFileSize
GetVersionExA
GetTimeFormatA
GetProcessHeap
GetConsoleOutputCP
GetProfileIntW
GetEnvironmentVariableW
CreateMutexA
GetModuleFileNameA
LocalFileTimeToFileTime
GetFileType
CreateMailslotW
SetThreadLocale
VirtualFreeEx
SetLastError
SetConsoleOutputCP
HeapReAlloc
MoveFileExW
DebugBreak
SetHandleCount
GetProcAddress
SetFilePointer
OutputDebugStringW
GetShortPathNameW
EnumTimeFormatsA
LoadModule
SetCurrentDirectoryA
GetThreadPriority
DeleteCriticalSection
OpenMutexA
RaiseException
GetConsoleMode
CompareStringA
CloseHandle
FreeEnvironmentStringsA
RtlUnwind
GetTickCount
GetStringTypeW
QueryPerformanceCounter
GetUserDefaultLCID
UnhandledExceptionFilter
CompareStringW
IsBadReadPtr
GetAtomNameA
SetConsoleWindowInfo
TlsGetValue
EnumResourceNamesW
InitializeCriticalSection
SetEnvironmentVariableA
CreateFileA
GetOEMCP
FreeLibrary
HeapFree
GetEnvironmentStrings
GetStartupInfoA
GetACP
GlobalAddAtomA
GetThreadContext
VirtualFree
LCMapStringA
OutputDebugStringA
GetCurrentThreadId
FlushFileBuffers
HeapAlloc
MultiByteToWideChar
WriteConsoleA
FreeEnvironmentStringsW
SetLocaleInfoW
GetCurrentThread
DuplicateHandle
GetNamedPipeHandleStateW
MoveFileExA
HeapDestroy
GetDateFormatA
TlsSetValue
GetLogicalDriveStringsA
WriteConsoleW
TlsFree
EnumSystemLocalesA
EnumResourceTypesW
lstrlenA
IsDebuggerPresent
GetDiskFreeSpaceA
LoadLibraryW
SetConsoleCtrlHandler
VirtualQuery
GetTimeZoneInformation
RtlZeroMemory
SetUnhandledExceptionFilter
InterlockedExchange
WriteFile
GetLastError
GetLocaleInfoA
GetModuleFileNameW
GetNumberFormatA
GetPriorityClass
GetCurrentProcessId
EnterCriticalSection
GetStringTypeA
OpenSemaphoreW
GlobalSize
GetSystemTimeAsFileTime
ExitProcess
InterlockedDecrement
GetCurrentProcess
GetEnvironmentStringsW
WriteConsoleInputA
ReadFile
TlsAlloc
SetLocalTime
CreateEventW
GetNumberFormatW
LCMapStringW
HeapValidate
TerminateProcess
HeapCreate
WideCharToMultiByte
GetCommandLineA
VirtualAlloc
GetComputerNameA
GetConsoleCP
GetCPInfo
EnumSystemCodePagesA
IsValidCodePage
LeaveCriticalSection
Sleep
CompareFileTime
GlobalFix
LoadLibraryA
CreateDirectoryExA
SetStdHandle
GetLocaleInfoW

Sections

.text
Size: 308KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 424KB - Virtual size: 421KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c64f9e581e79dbf3f445e598066b6335

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 308KB - Virtual size: 304KB

.rdata Size: 424KB - Virtual size: 421KB

.data Size: 140KB - Virtual size: 170KB

.rsrc Size: 48KB - Virtual size: 46KB

.text
Size: 308KB - Virtual size: 304KB

.rdata
Size: 424KB - Virtual size: 421KB

.data
Size: 140KB - Virtual size: 170KB

.rsrc
Size: 48KB - Virtual size: 46KB