7073a73ca57300cd1954a539e926ba62f011a3cf8d769a7f091e17a8551fcff9

Sharing

Copy URL

Twitter E-mail

General

Target

7073a73ca57300cd1954a539e926ba62f011a3cf8d769a7f091e17a8551fcff9
Size

321KB
MD5

93f17b49f2283a32883029a39af05d7a
SHA1

594ba56dd166285b763c2a97458c4c6d54104946
SHA256

7073a73ca57300cd1954a539e926ba62f011a3cf8d769a7f091e17a8551fcff9
SHA512

ca467a70056cd0ff56d46bcc8dbca2a87cadd8a5a9d8a875069be8bba7c755324910a4d81a9e02245df9b488b63c98ce3ba0150074a7134d9aa4ee5f6930f24b
SSDEEP

6144:o4eHFX373YZP1S+WIXWdmQGrb/Ws3ZuL2SuX8dZNOa:teHFX3L8XAmCCSvdZca

Score

N/A

Malware Config

Signatures

Files

7073a73ca57300cd1954a539e926ba62f011a3cf8d769a7f091e17a8551fcff9
.exe windows x86

6851c60c2294989ece79ce24bb3e06ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetOEMCP
HeapSize
GetLocaleInfoW
GetSystemTimeAsFileTime
GetCurrentProcessId
LoadLibraryW
SetStdHandle
WriteConsoleW
CreateFileA
CreateFileW
SetEndOfFile
IsValidCodePage
CloseHandle
GetLastError
HeapCreate
GetTickCount
GetCurrentProcess
QueryPerformanceCounter
GetCurrentThreadId
SetLastError
TlsFree
GetACP
HeapAlloc
InterlockedIncrement
InterlockedDecrement
EncodePointer
DecodePointer
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
RtlUnwind
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
GetCPInfo
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
IsProcessorFeaturePresent
GetProcAddress
GetModuleHandleW
ExitProcess
ReadFile
SetFilePointer
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
TlsAlloc
TlsGetValue
TlsSetValue
GetProcessHeap

user32

GetWindowLongA
GetWindow
GetWindowRect
GetParent
GetWindowInfo
WindowFromPoint
GetClientRect
LoadCursorA
GetWindowTextA
SetDlgItemInt
GetDlgItem
SendDlgItemMessageW
GetSysColor
GetCursorPos
IsWindow
SetDlgItemTextW
EnableWindow

gdi32

GdiFlush

version

VerQueryValueA
GetFileVersionInfoSizeA

shlwapi

StrTrimA

comctl32

ord17

Sections

.text
Size: 237KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

..idata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6851c60c2294989ece79ce24bb3e06ed

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

version

shlwapi

comctl32

Sections

.text Size: 237KB - Virtual size: 236KB

.rdata Size: 20KB - Virtual size: 20KB

.data Size: 7KB - Virtual size: 18KB

..idata Size: 27KB - Virtual size: 26KB

.bss Size: 14KB - Virtual size: 13KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 237KB - Virtual size: 236KB

.rdata
Size: 20KB - Virtual size: 20KB

.data
Size: 7KB - Virtual size: 18KB

..idata
Size: 27KB - Virtual size: 26KB

.bss
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 14KB - Virtual size: 14KB