b06a3b7924b8b9d62ed74acf75aa914f3b816225094f70683b6bd194d85c6b46

Sharing

Copy URL Twitter E-mail

General

Target

b06a3b7924b8b9d62ed74acf75aa914f3b816225094f70683b6bd194d85c6b46
Size

1.5MB
MD5

82272c04f3460f02e3040cc63444a5e0
SHA1

222f92d86aa823642d412a085d62d9fadd88e001
SHA256

b06a3b7924b8b9d62ed74acf75aa914f3b816225094f70683b6bd194d85c6b46
SHA512

609f173b55bda80252749d8d002f1576bb11829914de0beb16d6b8c62c06a4a856cd22d24fdb503b987f04dec3f4978d600194ef1565fb3d1fea09f22629461d
SSDEEP

24576:b6Q3RRcr6g/+g892lqzmXpWC1ga/7BA5sMNJmwSbu2RRP57RljAMVvqByUSYS7:fRcrJ+gxlQmvTt57RlMvg7

Score

N/A

Malware Config

Signatures

Files

b06a3b7924b8b9d62ed74acf75aa914f3b816225094f70683b6bd194d85c6b46
.exe windows x86

d9fc0cb599271c4904e06a0ede7793e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
ReadFile
GetUserDefaultLangID
FormatMessageA
CreateFileA
CloseHandle
GetExitCodeThread
GetPriorityClass
lstrcpyA
lstrcatA
OpenMutexA
TerminateThread
ReleaseSemaphore
OpenSemaphoreA
CreateSemaphoreA
DisconnectNamedPipe
WaitNamedPipeA
CreateNamedPipeA
ConnectNamedPipe
GetCommandLineA
CreateProcessA
SetErrorMode
SetPriorityClass
MoveFileA
GetModuleFileNameA
LoadLibraryExA
GetTapeParameters
GetStdHandle
SetTapePosition
DeleteFileA
GetLastError
GetStartupInfoA
GetModuleHandleA
GetFileInformationByHandle
WriteFile
FlushFileBuffers
GetCurrentProcessId
GetVersionExA
GetComputerNameA
OpenProcess
FreeLibrary
GetCurrentDirectoryA
Sleep
TlsAlloc
GetCurrentProcess
DuplicateHandle
GetCurrentThread
GetTempPathA
GetDriveTypeA
CreateMutexA
GetFileSize
WaitForSingleObject
ReleaseMutex
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
FlushViewOfFile
SetEndOfFile
OpenEventA
WaitForMultipleObjects
SetEvent
CreateEventA
ResetEvent
IsBadReadPtr
SetThreadPriority
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetProcAddress
LoadLibraryA
InitializeCriticalSection
FindFirstFileA
FindClose
FindNextFileA
GetCurrentThreadId
TlsGetValue
TlsFree
TlsSetValue
ResumeThread
SuspendThread
SleepEx

msvcp60

?_Xran@std@@YAXXZ
?_Xlen@std@@YAXXZ
??0bad_alloc@std@@QAE@PBD@Z
??1bad_alloc@std@@UAE@XZ
??0bad_alloc@std@@QAE@ABV01@@Z

msvcrt

ftell
__getmainargs
_acmdln
_XcptFilter
_exit
??1type_info@@UAE@XZ
pow
strncat
localtime
_ftol
putc
__setusermatherr
_initterm
_setmaxstdio
_snprintf
_except_handler3
__p__fmode
_adjust_fdiv
signal
abort
strtok
_stricmp
_ftime
_sopen
getc
__p__commode
fputs
fopen
exit
fread
fseek
fclose
memchr
_access
_purecall
??1exception@@UAE@XZ
??0exception@@QAE@XZ
isdigit
isspace
__set_app_type
_onexit
?terminate@@YAXXZ
_beginthreadex
_close
_dup2
_stat
_unlink
_mktemp
_getpid
_strnicmp
_umask
_read
_lseek
_open
_fdopen
_write
_swab
tolower
isprint
fflush
ctime
vfprintf
_sys_nerr
_sys_errlist
strrchr
toupper
isalpha
_fullpath
strchr
strpbrk
fgetc
fputc
_iob
printf
atoi
getenv
system
time
fgets
_errno
_controlfp
strncmp
__dllonexit
memmove
fprintf
vsprintf
malloc
_isatty
_getcwd
_fileno
strncpy
_open_osfhandle
sprintf
__CxxFrameHandler
free
??0exception@@QAE@ABV0@@Z
_CxxThrowException
atol

user32

SetForegroundWindow
ShowWindow
PostQuitMessage
DestroyMenu
AppendMenuA
CreatePopupMenu
DeleteMenu
GetSystemMenu
DestroyIcon
LoadImageA
GetSysColor
SetWindowLongA
DefWindowProcA
GetCursorPos
SetCursor
SetMenuDefaultItem
LoadCursorA
GetParent
wsprintfA
SetWindowPos
SetDlgItemInt
EnableWindow
GetDlgItemInt
DialogBoxParamA
GetWindowLongA
EndDialog
TrackPopupMenu
PostMessageA
SetFocus
SendMessageA
CreateWindowExA
LoadIconA
FindWindowA
LoadStringA
WinHelpA
SetDlgItemTextA
RegisterClassA
GetMessageA
DestroyWindow
TranslateMessage
DispatchMessageA
MessageBoxA
GetDlgItem
SendDlgItemMessageA
UpdateWindow

advapi32

RegCloseKey
RegisterServiceCtrlHandlerA
RegOpenKeyExA
GetUserNameA
FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
SetServiceStatus
RegisterEventSourceA
ReportEventA
DeregisterEventSource
ImpersonateNamedPipeClient
RevertToSelf
StartServiceCtrlDispatcherA
RegQueryValueExA
SetSecurityDescriptorDacl
OpenProcessToken
OpenThreadToken
InitializeSecurityDescriptor

mpr

WNetOpenEnumA
WNetEnumResourceA
WNetCloseEnum
WNetGetUniversalNameA

gdi32

CreateSolidBrush
SetBkMode
GetStockObject

shell32

Shell_NotifyIconA

comctl32

PropertySheetA
CreatePropertySheetPageA

ws2_32

getpeername
listen
bind
getsockopt
setsockopt
connect
socket
htons
getservbyname
WSAGetLastError
gethostname
WSAStartup
WSACleanup
accept
getsockname
shutdown
inet_addr
gethostbyname
__WSAFDIsSet
select
recv
send
closesocket
htonl
ntohl

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 168KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9fc0cb599271c4904e06a0ede7793e3

Headers

File Characteristics

Imports

kernel32

msvcp60

msvcrt

user32

advapi32

mpr

gdi32

shell32

comctl32

ws2_32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 148KB - Virtual size: 147KB

.data Size: 168KB - Virtual size: 201KB

.rsrc Size: 16KB - Virtual size: 14KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 148KB - Virtual size: 147KB

.data
Size: 168KB - Virtual size: 201KB

.rsrc
Size: 16KB - Virtual size: 14KB