f35f05d089e7f1774f8c08d68e30c4af1e55d775b3bd4f0a0ceb7858805b4397

Sharing

Copy URL Twitter E-mail

General

Target

f35f05d089e7f1774f8c08d68e30c4af1e55d775b3bd4f0a0ceb7858805b4397
Size

640KB
MD5

a8fb24b922e52dccc3c292b5c7c2cd31
SHA1

12db3e1cb8127982ccc5ee36638be06125715b38
SHA256

f35f05d089e7f1774f8c08d68e30c4af1e55d775b3bd4f0a0ceb7858805b4397
SHA512

168f94252769dd8e591475e5810a4185c163fddac4688966486122c1b8e95c0a0201c25dd3e40bb3847b3c9f32ebd4bb8139f3c9768cd6447535a31615c218d5
SSDEEP

12288:4CnLsxd2cmdVLcW+wNX6rlAg7gCUzqKPmwTlg7+6:RLrZNKrlj1UzqKeMlE

Score

N/A

Malware Config

Signatures

Files

f35f05d089e7f1774f8c08d68e30c4af1e55d775b3bd4f0a0ceb7858805b4397
.exe windows x86

fabb2c62a366613307c3c1d249b38897

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeFreeStringHandle
GetKeyboardLayoutNameW
SetProcessDefaultLayout
DestroyMenu
ScrollWindowEx
CharPrevA
DefWindowProcW
MonitorFromPoint
SetCursor
CreatePopupMenu
TabbedTextOutA
UnhookWinEvent
CharPrevExA
InSendMessage
CheckRadioButton
CharNextW
SetWindowLongW
SystemParametersInfoA
MenuItemFromPoint
ShowWindow
MessageBoxW
CreateWindowStationW
GetWindowModuleFileNameW
IsDialogMessageA
CreateAcceleratorTableA
RegisterClassA
DrawMenuBar
SetTimer
GetScrollRange
GetShellWindow
DeferWindowPos
AnyPopup
PostThreadMessageA
EnumWindowStationsW
DefDlgProcA
SetShellWindow
GrayStringW
PeekMessageW
BringWindowToTop
SystemParametersInfoW
ToAsciiEx
WaitMessage
RedrawWindow
DrawStateA
IsCharAlphaA
wsprintfW
SetWindowTextW
GetDesktopWindow
CopyAcceleratorTableA
RegisterWindowMessageW
BroadcastSystemMessage
FillRect
SetDlgItemTextA
CopyImage
DragObject
SendDlgItemMessageW
ChangeMenuW
DestroyWindow
IsWindowEnabled
ShowCaret
DrawIconEx
GetUpdateRgn
LookupIconIdFromDirectory
GetParent
CallMsgFilterW
DialogBoxParamA
GetMenuItemInfoW
GetMessageW
UnregisterDeviceNotification
DispatchMessageW
SendDlgItemMessageA
SendMessageA
GetQueueStatus
DefMDIChildProcA
DdeReconnect
GetWindowRgn
SetDoubleClickTime
IsCharLowerW
UnloadKeyboardLayout
CheckDlgButton
EnumDisplaySettingsW
GetClassWord
RemovePropW
RegisterClassExA
GetForegroundWindow
CreateWindowExW
DlgDirSelectComboBoxExA
DefWindowProcA
DestroyAcceleratorTable
ToAscii
GetWindowTextA
LoadImageW
LoadBitmapA
DefMDIChildProcW
CreateIcon
wvsprintfW
GetDC
EnumDisplayDevicesW
PostQuitMessage

wininet

InternetGoOnlineA
FindNextUrlCacheEntryExW
GetUrlCacheGroupAttributeA
InternetCrackUrlW
GopherGetAttributeA
InternetFortezzaCommand
FtpCommandW
InternetCanonicalizeUrlW
DeleteUrlCacheContainerW

kernel32

TlsAlloc
ResetEvent
EnumCalendarInfoA
MultiByteToWideChar
GetTimeFormatA
GetVolumeInformationW
HeapSize
ExitProcess
HeapAlloc
lstrcmpiA
GetSystemTimeAsFileTime
IsValidLocale
GetLocaleInfoA
WriteConsoleOutputAttribute
GetProcAddress
CreateWaitableTimerW
FindResourceA
GetCPInfo
HeapCreate
SetThreadIdealProcessor
GetVersionExA
SetEnvironmentVariableA
GetSystemInfo
GetDateFormatA
OpenWaitableTimerW
GetStdHandle
GetCommandLineA
GetOEMCP
GetFileType
SetHandleCount
OpenProcess
GetCommandLineW
LeaveCriticalSection
DeleteCriticalSection
VirtualAlloc
OpenMutexA
TlsSetValue
VirtualQuery
RtlUnwind
WriteProfileSectionA
lstrlen
GetUserDefaultLCID
FreeEnvironmentStringsW
GetLastError
LocalFileTimeToFileTime
LoadLibraryW
GetCurrentThread
HeapFree
SetComputerNameW
InterlockedExchange
GetStringTypeA
VirtualFreeEx
EnumSystemLocalesW
CloseHandle
FreeEnvironmentStringsA
GetModuleFileNameA
GetCurrentProcess
WriteFile
CompareStringA
QueryPerformanceCounter
GlobalAddAtomW
EnumResourceLanguagesA
OutputDebugStringW
GetThreadSelectorEntry
HeapReAlloc
GetLocaleInfoW
FindFirstFileW
EnumCalendarInfoExA
WriteProfileSectionW
CreateToolhelp32Snapshot
VirtualFree
WriteConsoleOutputCharacterW
CompareStringW
VirtualProtect
GetNumberFormatA
SetFilePointer
HeapDestroy
EnumDateFormatsExA
GetStartupInfoW
TlsFree
InterlockedCompareExchange
Sleep
GetCurrentProcessId
SetUnhandledExceptionFilter
GetFileAttributesExA
TlsGetValue
IsValidCodePage
SetLastError
LCMapStringW
SetThreadPriority
GetEnvironmentStrings
GetEnvironmentStringsW
FoldStringA
SetConsoleCP
GetPriorityClass
CreateMutexA
RaiseException
ReadFile
GetStringTypeW
GetModuleHandleA
GetPrivateProfileStructA
WriteFileEx
CommConfigDialogA
GlobalLock
GetCurrentThreadId
EnterCriticalSection
GetModuleFileNameW
SetStdHandle
GetShortPathNameW
EnumSystemLocalesA
lstrcpyW
LCMapStringA
InitializeCriticalSection
GetSystemTimeAdjustment
TerminateProcess
WideCharToMultiByte
ReadConsoleInputA
IsBadWritePtr
GetACP
FlushViewOfFile
UnhandledExceptionFilter
CreateThread
FlushFileBuffers
GetStartupInfoA
GetTickCount
GetTimeZoneInformation
ReleaseSemaphore
LoadLibraryA

comctl32

ImageList_Draw
ImageList_LoadImageW
ImageList_SetIconSize
InitCommonControlsEx
DrawInsert
ImageList_GetDragImage
CreatePropertySheetPageW
ImageList_DragShowNolock
CreateMappedBitmap
MakeDragList
ImageList_Add
ImageList_EndDrag
ImageList_DrawEx
ImageList_DragMove
ImageList_Replace
ImageList_DragLeave
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_Destroy
ImageList_Read
DrawStatusTextW
CreateToolbarEx
DestroyPropertySheetPage
CreateUpDownControl
ImageList_GetIconSize

Sections

.text
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fabb2c62a366613307c3c1d249b38897

Headers

File Characteristics

Imports

user32

wininet

kernel32

comctl32

Sections

.text Size: 192KB - Virtual size: 190KB

.rdata Size: 260KB - Virtual size: 256KB

.data Size: 108KB - Virtual size: 120KB

.rsrc Size: 76KB - Virtual size: 72KB

.text
Size: 192KB - Virtual size: 190KB

.rdata
Size: 260KB - Virtual size: 256KB

.data
Size: 108KB - Virtual size: 120KB

.rsrc
Size: 76KB - Virtual size: 72KB