fb3295218f3c0ab2599cc65a52edcf8e7a8d2d7b708318e8a4f1e548a2993694

Sharing

Copy URL

Twitter E-mail

General

Target

fb3295218f3c0ab2599cc65a52edcf8e7a8d2d7b708318e8a4f1e548a2993694
Size

698KB
MD5

5fc0c0b54fa4ea4f497b309118c183e6
SHA1

ab24c1eed5fa2d8f6b1ab6cd864a327cbf7ac9b4
SHA256

fb3295218f3c0ab2599cc65a52edcf8e7a8d2d7b708318e8a4f1e548a2993694
SHA512

e4600506b75a852d1758dfba53a74db7d6165a30156174b26169176c1b7dac35ba41fa0babd1b11eacd6620e258081f75890e5bbefc13f4d4a87163892e48dc2
SSDEEP

6144:z5CH26QQ/B3RBz7TDBcQeeaQeekQeesQeej1QeehQeeAfhGk2ehCgMaVfbWAOaD9:zsHv5BhxTDKnnMQWuf2n8JD7D97

Score

N/A

Malware Config

Signatures

Files

fb3295218f3c0ab2599cc65a52edcf8e7a8d2d7b708318e8a4f1e548a2993694
.exe windows x86

473c27b8fae49832390426ba821a90ec

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetDevCaps
timeEndPeriod
timeBeginPeriod

d3d9

Direct3DCreate9

kernel32

LoadLibraryA
GetProcAddress
OutputDebugStringA
WriteFile
CreateFileA
WideCharToMultiByte
CloseHandle
GetSystemInfo
IsProcessorFeaturePresent
EnterCriticalSection
DeleteCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualFree
VirtualAlloc
FlushFileBuffers
SetStdHandle
HeapSize
CreateMutexA
GetConsoleMode
GetConsoleCP
SetFilePointer
LCMapStringW
LCMapStringA
VirtualQuery
InitializeCriticalSectionAndSpinCount
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetLocaleInfoA
HeapReAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteConsoleA
IsValidCodePage
GetOEMCP
GetACP
GetLastError
GetModuleHandleA
GetCurrentProcess
SetProcessWorkingSetSize
Sleep
GetWindowsDirectoryA
CreateProcessA
GetConsoleOutputCP
WriteConsoleW
GetCPInfo
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitThread
ResumeThread
CreateThread
RaiseException
GetCommandLineA
GetStartupInfoA
InterlockedIncrement
InterlockedDecrement
GetModuleHandleW
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId

user32

LoadIconA
GetWindowLongA
RegisterClassExA
CreateWindowExA
CreatePopupMenu
AppendMenuA
GetCursorPos
SetForegroundWindow
TrackPopupMenu
DestroyMenu
FindWindowExA
MessageBoxA
SetWindowPos
GetForegroundWindow
keybd_event
PaintDesktop
UnregisterHotKey
RegisterHotKey
GetDC
ReleaseDC
PostMessageA
GetMessageA
TranslateMessage
DispatchMessageA
OpenInputDesktop
GetUserObjectInformationA
OpenDesktopA
CreateDesktopA
CloseDesktop
SwitchDesktop
SetThreadDesktop
BeginPaint
EndPaint
KillTimer
SendMessageA
PostQuitMessage
DefWindowProcA
SetTimer
ShowWindow
DestroyWindow
SetWindowLongA
GetDesktopWindow
GetWindowRect
LoadCursorA

gdi32

ExtTextOutA
DeleteObject
CreateDIBSection
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetObjectA
SetBkColor

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyA

shell32

Shell_NotifyIconA

Sections

.text
Size: 187KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 357KB - Virtual size: 360KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

473c27b8fae49832390426ba821a90ec

Headers

DLL Characteristics

File Characteristics

Imports

winmm

d3d9

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 187KB - Virtual size: 186KB

.rdata Size: 105KB - Virtual size: 105KB

.data Size: 46KB - Virtual size: 62KB

.rsrc Size: 512B - Virtual size: 436B

.text Size: 357KB - Virtual size: 360KB

.text
Size: 187KB - Virtual size: 186KB

.rdata
Size: 105KB - Virtual size: 105KB

.data
Size: 46KB - Virtual size: 62KB

.rsrc
Size: 512B - Virtual size: 436B

.text
Size: 357KB - Virtual size: 360KB