f11cb9bc6d5f921babb5e25420391473416f75a657dd4673adf3780a5b649988

Sharing

Copy URL Twitter E-mail

General

Target

f11cb9bc6d5f921babb5e25420391473416f75a657dd4673adf3780a5b649988
Size

728KB
MD5

b525b0153227f943d7738d339705e298
SHA1

513f355d6ba68d2f78e2cbbcc35b1e7f5c987e62
SHA256

f11cb9bc6d5f921babb5e25420391473416f75a657dd4673adf3780a5b649988
SHA512

15027aa09ad7ceacbd5b4b758149d8e723d0d3ffafc674e5e6d3b2d88aa530fae21c0049a3e0376e057148d770c3a3938e12ff88c2e4e63d4258f0764cc50fd2
SSDEEP

12288:+bGIgoE8yq4tcnUFJLiZwVqxK+FJE+OQ5T+xM1qd/Q9wPSMz5bplCghwwyKY/Xdd:voFyq4tcnUnLgvdxim44tSSIJLNrR+Kz

Score

N/A

Malware Config

Signatures

Files

f11cb9bc6d5f921babb5e25420391473416f75a657dd4673adf3780a5b649988
.exe windows x86

915e2ce23b7ab24ff7dfd3ff2ac2dbb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
VirtualFree
SetHandleCount
HeapFree
GetStringTypeExA
ReadFileEx
GetCPInfo
GetACP
GetSystemDefaultLCID
WaitForMultipleObjects
SetLocaleInfoW
ReadFile
WideCharToMultiByte
GetUserDefaultLCID
GetStringTypeExW
EnumDateFormatsW
WriteConsoleW
WriteProfileStringW
FindResourceW
InterlockedIncrement
UnlockFile
CreateFileMappingW
InitializeCriticalSection
InterlockedDecrement
GetModuleFileNameA
GetCurrentProcess
LCMapStringW
GetUserDefaultLangID
HeapCreate
SetLastError
GetCurrentThread
GetStringTypeA
FindNextFileA
IsDebuggerPresent
SleepEx
ExitProcess
GetLocaleInfoA
RtlMoveMemory
HeapReAlloc
GetConsoleOutputCP
LoadLibraryA
GetTimeFormatA
OutputDebugStringW
InterlockedExchange
HeapSize
GetCurrentProcessId
RtlUnwind
SetUnhandledExceptionFilter
WriteFile
GetLocalTime
GetSystemTimeAsFileTime
lstrlenA
HeapValidate
GetCompressedFileSizeW
IsBadReadPtr
SystemTimeToFileTime
RaiseException
GetVersionExA
FlushViewOfFile
EnumSystemLocalesA
GetEnvironmentStringsW
SetFilePointer
GetConsoleCP
FillConsoleOutputCharacterA
HeapAlloc
GetCommandLineA
GetDateFormatA
GetFileTime
VirtualQuery
FlushFileBuffers
LocalFlags
SetStdHandle
GetPrivateProfileSectionW
CompareStringW
GetTickCount
LoadLibraryW
OpenMutexA
TlsFree
GetPrivateProfileIntW
WriteConsoleOutputA
GetFileType
WritePrivateProfileSectionA
CreateNamedPipeA
GetFileAttributesExA
WriteConsoleOutputCharacterW
GetConsoleMode
WriteProfileStringA
GetTempFileNameW
GetStdHandle
VirtualAlloc
GetModuleFileNameW
VirtualAllocEx
CloseHandle
GlobalAddAtomW
GetPrivateProfileStringA
OutputDebugStringA
HeapDestroy
GetStringTypeW
EnumResourceNamesW
GetEnvironmentStringsA
CreateMutexA
GetFileAttributesW
SetCriticalSectionSpinCount
GetOEMCP
GetLastError
FindFirstFileW
MultiByteToWideChar
CreateFileA
EnterCriticalSection
GetEnvironmentStrings
IsValidLocale
GetTimeZoneInformation
OpenWaitableTimerW
SetConsoleCtrlHandler
GetLocaleInfoW
GetLongPathNameA
FreeLibrary
LCMapStringA
GetStartupInfoA
FindNextChangeNotification
UnhandledExceptionFilter
IsValidCodePage
DebugBreak
GetProcAddress
ReadConsoleOutputW
CopyFileA
TerminateProcess
SetEnvironmentVariableA
WriteConsoleInputW
AllocConsole
GetNamedPipeHandleStateA
GetCurrentThreadId
GetConsoleCursorInfo
SetComputerNameW
TlsSetValue
CompareStringA
LeaveCriticalSection
EnumResourceTypesW
FreeEnvironmentStringsW
WritePrivateProfileSectionW
OpenEventA
FillConsoleOutputCharacterW
GetModuleHandleA
GetProcessHeap
QueryPerformanceCounter
InterlockedCompareExchange
DeleteCriticalSection
TlsAlloc
SetCurrentDirectoryW
FreeEnvironmentStringsA
GetThreadPriorityBoost
TlsGetValue
GlobalSize

shell32

RealShellExecuteExW
DragAcceptFiles
DragQueryFileW

advapi32

AbortSystemShutdownA
RegSetValueExA
RegSaveKeyA
CryptExportKey
RegLoadKeyW
CryptGetDefaultProviderW
RegCloseKey
RegRestoreKeyW
CryptSignHashW
CryptGetKeyParam
LookupPrivilegeValueA
StartServiceW
RegRestoreKeyA
RegReplaceKeyA
CryptDeriveKey
CryptGetDefaultProviderA
RegConnectRegistryW
LookupPrivilegeNameW
RegDeleteValueA
RegSetKeySecurity
RegOpenKeyExA
RegQueryValueA
CryptSetProviderW

comctl32

ImageList_SetIconSize
ImageList_LoadImageA
ImageList_SetDragCursorImage
ImageList_GetImageInfo
ImageList_DragShowNolock
ImageList_GetIcon
ImageList_Add
CreateStatusWindowW
DrawInsert
ImageList_SetOverlayImage
InitCommonControlsEx
CreateToolbar
ImageList_Merge
CreatePropertySheetPageA
DrawStatusText
ImageList_DragMove
MakeDragList

user32

GetMenuBarInfo
GetListBoxInfo
GetParent
VkKeyScanExW
DrawCaption
GetDCEx
GetWindowLongA
SetProcessDefaultLayout
SetCapture
GetClipboardFormatNameW
SetClipboardViewer
MapVirtualKeyExA
GetProcessDefaultLayout
CharLowerBuffA
SetWindowTextA
EnumChildWindows
DrawAnimatedRects
CharToOemW
IsCharAlphaW
WinHelpA
EnumDisplaySettingsW
RegisterClassExA
GetWindowTextW
SwitchToThisWindow
GetDlgItem
TileWindows
DeferWindowPos
CreateMDIWindowA
GetQueueStatus
CreateIconFromResource
CharPrevW
InSendMessageEx
NotifyWinEvent
EnumDisplaySettingsExA
CloseClipboard
RegisterClassA
BeginDeferWindowPos
EnumDisplaySettingsExW
PostThreadMessageW
GetWindowTextLengthA
DestroyCaret
GetTabbedTextExtentW
OemKeyScan
DlgDirListA
DdeImpersonateClient
IntersectRect
SetWindowRgn
EnumPropsExA

comdlg32

ReplaceTextW

wininet

DeleteUrlCacheContainerW
SetUrlCacheEntryGroup
InternetReadFile
FreeUrlCacheSpaceA
RetrieveUrlCacheEntryFileA
FtpGetCurrentDirectoryW

Sections

.text
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 284KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

915e2ce23b7ab24ff7dfd3ff2ac2dbb5

Headers

File Characteristics

Imports

kernel32

shell32

advapi32

comctl32

user32

comdlg32

wininet

Sections

.text Size: 304KB - Virtual size: 303KB

.rdata Size: 284KB - Virtual size: 282KB

.data Size: 116KB - Virtual size: 141KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 304KB - Virtual size: 303KB

.rdata
Size: 284KB - Virtual size: 282KB

.data
Size: 116KB - Virtual size: 141KB

.rsrc
Size: 20KB - Virtual size: 16KB