059505d396a1e2f51bc7e884aed80a49d829ca8080d4c9c9ddaddb76cf9c8ec8

Sharing

Copy URL Twitter E-mail

General

Target

059505d396a1e2f51bc7e884aed80a49d829ca8080d4c9c9ddaddb76cf9c8ec8
Size

712KB
MD5

838f59fb6942f0fc86ee8d4c1534aaa0
SHA1

1ddba9aea9fb0d6d76aff7be933171b862138fd5
SHA256

059505d396a1e2f51bc7e884aed80a49d829ca8080d4c9c9ddaddb76cf9c8ec8
SHA512

52652393f3300f401302140dd253325ec35dde117b10a574bc2057f8c4ac7a8001744aeb0c10355b8a067b9b3764e97090bb391debbd3778fc50f1b9a5d218f1
SSDEEP

12288:weuc7qn7K6Fy2EGMJIh5+CoFR3XlJiPusSz/G6ApwvmKGdBiMhnyOTdFK9osSsP+:Wc7e7K6Fy2gJIh5+Co718jKMhyOT/K9a

Score

N/A

Malware Config

Signatures

Files

059505d396a1e2f51bc7e884aed80a49d829ca8080d4c9c9ddaddb76cf9c8ec8
.exe windows x86

0d139a5f97f3afd32b3583d8eb487936

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
GetVersionExA
WaitForSingleObject
ReleaseSemaphore
ResetEvent
CreateFileA
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoA
LoadLibraryA
SetStdHandle
FlushFileBuffers
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetACP
QueryPerformanceCounter
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
GetModuleFileNameA
VirtualAlloc
SetEndOfFile
HeapCreate
HeapDestroy
LCMapStringW
LCMapStringA
GetCPInfo
GetStringTypeW
GetStringTypeA
RtlUnwind
RaiseException
CreateThread
ExitThread
ExitProcess
GetModuleHandleA
GetFileAttributesW
HeapReAlloc
GetStartupInfoA
GetCommandLineA
GetStdHandle
WriteConsoleW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
FormatMessageA
LocalFree
ResumeThread
TlsSetValue
OpenEventA
GetCurrentProcessId
GetCurrentThreadId
TlsGetValue
TlsFree
TlsAlloc
GetSystemTimeAsFileTime
Sleep
InterlockedExchange
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetSystemInfo
MulDiv
GetFileType
CloseHandle
CreateDirectoryW
GetCurrentProcess
SystemTimeToFileTime
SetFilePointer
DosDateTimeToFileTime
WriteFile
SizeofResource
LoadResource
FindResourceW
FreeResource
LockResource
LoadLibraryW
GetProcAddress
GetCurrentDirectoryW
GetTickCount
GetModuleHandleW
GetLastError
GetFileSize
CreateFileW
ReadFile
GetPrivateProfileStringW
SetEvent
GetPrivateProfileIntW
HeapFree
WideCharToMultiByte
SetLastError
CreateEventA
HeapAlloc
VirtualQuery
MultiByteToWideChar
GetProcessHeap
GetModuleFileNameW
VirtualFree

user32

ScreenToClient
SetWindowLongW
PostQuitMessage
ShowWindow
CharNextW
SendMessageW
RegisterClassExW
GetClientRect
TranslateMessage
SetPropW
GetClassInfoExW
CreateWindowExW
SetFocus
IsWindow
LoadCursorW
GetParent
SetWindowPos
PostMessageW
GetWindowLongW
IsIconic
RegisterClassW
MonitorFromWindow
GetMonitorInfoW
InvalidateRgn
CreateAcceleratorTableW
MoveWindow
ShowCaret
ClientToScreen
HideCaret
GetSysColor
CreateCaret
SetCaretPos
SetRect
CharPrevW
FillRect
ReleaseCapture
SetCapture
MapWindowPoints
KillTimer
GetKeyState
IsRectEmpty
GetFocus
ReleaseDC
EndPaint
BeginPaint
DestroyWindow
GetUpdateRect
GetDC
UpdateLayeredWindow
SetTimer
IntersectRect
SetWindowTextW
InvalidateRect
GetWindowTextW
GetCursorPos
GetWindowTextLengthW
PtInRect
EnableWindow
OffsetRect
GetPropW
CallWindowProcW
DefWindowProcW
SetCursor
GetWindow
GetWindowRect
DispatchMessageW
GetMessageW
wvsprintfW
SystemParametersInfoW

gdi32

GetDeviceCaps
SetBkColor
TextOutW
GetCharABCWidthsW
SetStretchBltMode
CombineRgn
CreateRoundRectRgn
LineTo
MoveToEx
ExtTextOutW
SelectClipRgn
CreateDIBSection
GetClipBox
StretchBlt
RoundRect
GetTextExtentPoint32W
CreateRectRgnIndirect
ExtSelectClipRgn
GetObjectA
GetTextMetricsW
CreateCompatibleBitmap
Rectangle
CreatePen
GetStockObject
RestoreDC
DeleteDC
SaveDC
SetWindowOrgEx
SelectObject
BitBlt
GetObjectW
CreateCompatibleDC
SetBkMode
DeleteObject
SetTextColor
CreateSolidBrush
CreateFontIndirectW

ole32

CoInitialize
CLSIDFromProgID
OleLockRunning
CoCreateInstance
CLSIDFromString
CoUninitialize

comctl32

ord17
_TrackMouseEvent

riched20

ord4

gdiplus

GdipCreateFontFromDC
GdipCreateFromHDC
GdipDeleteBrush
GdipSetStringFormatFlags
GdipDeleteGraphics
GdipSetStringFormatLineAlign
GdipCreateSolidFill
GdipDeleteFont
GdipDeleteStringFormat
GdipDrawString
GdipCreateFontFromLogfontA
GdipSetStringFormatTrimming
GdipSetStringFormatAlign
GdipCreateStringFormat
GdiplusShutdown
GdiplusStartup

Sections

.text
Size: 540KB - Virtual size: 537KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d139a5f97f3afd32b3583d8eb487936

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

comctl32

riched20

gdiplus

Sections

.text Size: 540KB - Virtual size: 537KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 16KB - Virtual size: 33KB

.tls Size: 4KB - Virtual size: 2B

.rsrc Size: 44KB - Virtual size: 41KB

.text
Size: 540KB - Virtual size: 537KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 16KB - Virtual size: 33KB

.tls
Size: 4KB - Virtual size: 2B

.rsrc
Size: 44KB - Virtual size: 41KB