fedd7b0cebe5f6f79c18dc9fb3a1f7c28728e2d3d3e75068fd2ee469d97fbac1

Sharing

Copy URL Twitter E-mail

General

Target

fedd7b0cebe5f6f79c18dc9fb3a1f7c28728e2d3d3e75068fd2ee469d97fbac1
Size

268KB
MD5

9319a3bd3391a721bd8bd77bd10c8518
SHA1

aa8e6e3a00b3553fb52e8b42143ed238cb153f44
SHA256

fedd7b0cebe5f6f79c18dc9fb3a1f7c28728e2d3d3e75068fd2ee469d97fbac1
SHA512

04c501ee0090a6491cad9a4f48948a5078d7d32b9a5c1c80dbeb00bbf7911958da14b7c31f99ee455995224b634957dcf75c42144580f3bd9f9c4a9b06e769a6
SSDEEP

3072:hO3F8J5uO1ORAgke3CZwMakoje7iu+ygo04HTCnRtgPrrzQ3LTNT4S:hzXMRA+3swHkwygjr0s3dT

Score

N/A

Malware Config

Signatures

Files

fedd7b0cebe5f6f79c18dc9fb3a1f7c28728e2d3d3e75068fd2ee469d97fbac1
.exe windows x86

9d59ea92659cb23116a7fc8c2e578245

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
DeleteFileA
SizeofResource
GlobalLock
GetCommandLineW
FindResourceW
GlobalUnlock
CreateProcessW
RaiseException
GlobalAlloc
ExitProcess
lstrcmpiW
GetLastError
LoadLibraryExW
MultiByteToWideChar
WideCharToMultiByte
SetEndOfFile
GetLocaleInfoW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetSystemTimeAsFileTime
GetCurrentProcessId
GetModuleFileNameW
LeaveCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetFilePointer
GetConsoleMode
GetConsoleCP
ReadFile
IsValidCodePage
GetOEMCP
GetStdHandle
WriteFile
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
HeapSize
HeapCreate
HeapDestroy
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
GetCPInfo
GetStartupInfoA
GetCommandLineA
MoveFileA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LoadResource
CreateFileA
GetCurrentProcess
FlushInstructionCache
CloseHandle
DeleteCriticalSection
lstrcmpW
SetCurrentDirectoryA
InitializeCriticalSection
GetTickCount
InterlockedDecrement
GetCurrentThreadId
GetModuleHandleW
FreeLibrary
InterlockedIncrement
EnterCriticalSection
GetModuleFileNameA
SetLastError
lstrlenW
QueryPerformanceCounter
TerminateProcess
HeapReAlloc
GetThreadLocale
GetLocaleInfoA
GetACP
GetVersionExA
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
GetProcAddress
HeapAlloc
GetProcessHeap
HeapFree
Sleep
InterlockedExchange
InterlockedCompareExchange

user32

DispatchMessageW
GetWindowLongW
BeginPaint
EndPaint
ReleaseCapture
GetDC
CallWindowProcW
CharNextW
CreateWindowExW
ReleaseDC
DestroyWindow
UpdateWindow
AdjustWindowRectEx
CreateAcceleratorTableW
ScreenToClient
SetWindowLongW
ClientToScreen
SetRect
GetMessageW
GetSystemMetrics
RegisterClassW
MessageBoxW
GetClientRect
GetDesktopWindow
LoadIconW
GetDlgItem
SetFocus
GetSysColor
SetCapture
MessageBoxA
SetWindowPos
RegisterClassExW
GetParent
MoveWindow
LoadCursorW
IsChild
GetClassInfoExW
RegisterWindowMessageW
GetWindow
RedrawWindow
GetMenu
FillRect
GetClassNameW
GetWindowTextLengthW
DefWindowProcW
IsWindow
ShowWindow
GetWindowTextW
GetFocus
SetWindowTextW
PostQuitMessage
DestroyAcceleratorTable
InvalidateRgn
TranslateMessage
InvalidateRect
SendMessageW
UnregisterClassA

gdi32

GetStockObject
DeleteObject
SelectObject
GetDeviceCaps
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
CreateSolidBrush
GetObjectW

advapi32

RegCloseKey
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegQueryInfoKeyW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW

ole32

OleInitialize
OleUninitialize
CLSIDFromString
CoTaskMemFree
CLSIDFromProgID
CoTaskMemAlloc
CoGetClassObject
CoTaskMemRealloc
CoCreateInstance
OleLockRunning
StringFromGUID2
CreateStreamOnHGlobal

oleaut32

SysFreeString
SysAllocString
VarUI4FromStr
VariantInit
VariantClear
LoadTypeLi
OleCreateFontIndirect
SysAllocStringLen
SysStringByteLen
LoadRegTypeLi
SysStringLen

Sections

.text
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9d59ea92659cb23116a7fc8c2e578245

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Sections

.text Size: 136KB - Virtual size: 134KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 12KB - Virtual size: 33KB

.rsrc Size: 84KB - Virtual size: 84KB

.text
Size: 136KB - Virtual size: 134KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 12KB - Virtual size: 33KB

.rsrc
Size: 84KB - Virtual size: 84KB