9a3ce06f1d543922bf99b10faa07adbe9a288bbd0bad30c7eba7521d994b86b1

Sharing

Copy URL

Twitter E-mail

General

Target

9a3ce06f1d543922bf99b10faa07adbe9a288bbd0bad30c7eba7521d994b86b1
Size

144KB
MD5

a2f2693b5419f30baae60a0800af0630
SHA1

ad8053546360bf9bfe2af43a8d4fb9101cf05711
SHA256

9a3ce06f1d543922bf99b10faa07adbe9a288bbd0bad30c7eba7521d994b86b1
SHA512

6aaff2b52e1b9b88ed068210185ceae2d0e3725ba746e0b78caae8feeedac70684af36b53ff1268e5fc2f1affade87fc1ce9b8b7bd1f5f41ae0a2f9eee549015
SSDEEP

3072:N9Igwiryokqj8iuipdW/woNZs6vtUdKkp:N7wi5FbJU3vmdK

Score

N/A

Malware Config

Signatures

Files

9a3ce06f1d543922bf99b10faa07adbe9a288bbd0bad30c7eba7521d994b86b1
.exe windows x86

fcd0efb3a777e18d7355643477b5d5fa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
lstrcmpiA
GetCurrentThreadId
GetCommandLineA
lstrlenW
MultiByteToWideChar
lstrlenA
GetShortPathNameA
GetModuleHandleA
GetModuleFileNameA
WideCharToMultiByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcpynA
IsDBCSLeadByte
InitializeCriticalSection
lstrcpyA
lstrcatA
LoadLibraryA
WaitForMultipleObjects
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetConsoleCtrlHandler
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
GetProcAddress
FreeLibrary
GetLastError
CreateEventA
WaitForSingleObject
CreateThread
CloseHandle
GetVersionExA
CompareFileTime
InterlockedDecrement
Sleep
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
HeapSize
GetCurrentProcess
TerminateProcess
RaiseException
ExitProcess
GetVersion
GetStartupInfoA
HeapReAlloc
LocalFree
RtlUnwind
HeapFree
HeapAlloc

user32

KillTimer
PostMessageA
PostThreadMessageA
EnumDisplaySettingsA
CharNextA
RegisterClassA
CreateWindowExA
ChangeDisplaySettingsExA
DispatchMessageA
SetTimer
PostQuitMessage
RegisterWindowMessageA
DefWindowProcA
GetMessageA
FindWindowA
SendNotifyMessageA
ChangeDisplaySettingsA

advapi32

RegEnumValueA
RegQueryInfoKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey

ole32

CoTaskMemFree
CoCreateInstance
CoSuspendClassObjects
CoUninitialize
CoTaskMemAlloc
CoTaskMemRealloc
CoRegisterClassObject
CoRevokeClassObject
CoInitialize

oleaut32

RegisterTypeLi
LoadTypeLi
VarUI4FromStr
SysAllocString
SysFreeString
VariantClear
CreateErrorInfo
VariantChangeType
SetErrorInfo
GetErrorInfo
VariantInit

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kdncnlr
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jonltmp
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fcd0efb3a777e18d7355643477b5d5fa

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

Sections

.text Size: 68KB - Virtual size: 68KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 17KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 36KB - Virtual size: 36KB

kdncnlr Size: 4KB - Virtual size: 32KB

jonltmp Size: - Virtual size: 4KB

.text
Size: 68KB - Virtual size: 68KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 17KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 36KB - Virtual size: 36KB

kdncnlr
Size: 4KB - Virtual size: 32KB

jonltmp
Size: - Virtual size: 4KB