c2dc068a211f00b149f7d53e396f314e34f854997929a512a55c782602d7586d

Sharing

Copy URL Twitter E-mail

General

Target

c2dc068a211f00b149f7d53e396f314e34f854997929a512a55c782602d7586d
Size

370KB
MD5

826032bac86d044068c0a2f8b0571930
SHA1

9846cb62ca88b0232aadb6eb15893987a6d3fa43
SHA256

c2dc068a211f00b149f7d53e396f314e34f854997929a512a55c782602d7586d
SHA512

164c8ee9241953907a0a86c635bd3b65effcdab47674979872207bb53253e7e1c95008c50517a6774c9ce263f861528f7345060c141192a359adcf063ec63a7b
SSDEEP

6144:5Cm2lgWbqfw6OwCOgRFR1pegvuzt5dqViTIIaO+Gv50h8Lab7ekTAB:wlgW+fRZg3R1kgvwEgpzv66LceFB

Score

N/A

Malware Config

Signatures

Files

c2dc068a211f00b149f7d53e396f314e34f854997929a512a55c782602d7586d
.exe windows x86

6c8cc0dd1fc6a77ef7e9e5c46ef836c1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
DeleteCriticalSection
WaitCommEvent
WriteProfileStringW
GetModuleHandleA
SetVolumeLabelW
WriteConsoleOutputCharacterA
GetNamedPipeInfo
_lopen
PeekConsoleInputA
GetProcessHeap
GetSystemInfo
VirtualFree
EnumResourceTypesA
OpenMutexA
OpenSemaphoreA
GetTapePosition
_lwrite
GetDiskFreeSpaceExW
HeapLock
TerminateProcess
GetThreadLocale
SetFileAttributesA
GetBinaryTypeA
CompareStringA
LocalReAlloc
GetEnvironmentVariableA
SetTapePosition
lstrcpynA
WaitNamedPipeA
CopyFileExA
CreateFileMappingW
CreateDirectoryExA
GetStartupInfoA
LCMapStringA
WritePrivateProfileStringW
MulDiv
PrepareTape
WaitForMultipleObjectsEx
LocalFlags
WaitForDebugEvent
CreateFileMappingA
GetProcessVersion
CreateRemoteThread
SetProcessShutdownParameters
GetComputerNameW
SetFileAttributesW
DeviceIoControl
CreateNamedPipeA

user32

VkKeyScanExA
SetCaretBlinkTime
keybd_event
LoadAcceleratorsW
OpenWindowStationA
SetRect
ShowScrollBar
LoadAcceleratorsA
ScrollWindowEx
wvsprintfW
KillTimer
DeleteMenu
GetDoubleClickTime
PeekMessageW
SetMenuItemBitmaps
IsWindowUnicode
PostQuitMessage
SetWindowsHookExW
SetPropA
SubtractRect
MapVirtualKeyExW
IsMenu
CreateCursor
SetScrollPos
SetMessageQueue
SendMessageA
SetPropW
ShowCursor
CallMsgFilterA
LoadCursorFromFileA
RegisterWindowMessageW
GetActiveWindow
SendMessageCallbackW
GetClientRect
GetProcessWindowStation
GetKeyboardLayoutNameW
GetForegroundWindow
AdjustWindowRectEx
EnumDesktopsW

gdi32

GetDIBits
GetCharWidth32A
GetTextCharacterExtra
RestoreDC
GetBoundsRect
DeleteObject
ScaleViewportExtEx
CancelDC
GetEnhMetaFileHeader
GetMetaFileW
CreateFontA
GetViewportOrgEx
MaskBlt
CreatePatternBrush
CreateBitmapIndirect
GetTextCharsetInfo
PolylineTo
ExtFloodFill
LineDDA
GetDeviceCaps

comdlg32

GetSaveFileNameW

advapi32

CryptDecrypt
SetNamedSecurityInfoA
AccessCheckAndAuditAlarmA
InitiateSystemShutdownA
LookupPrivilegeValueA
QueryServiceLockStatusA
IsValidAcl
BuildImpersonateExplicitAccessWithNameA
DeleteService
SetEntriesInAclA
SetFileSecurityW
RegQueryValueExA
LookupPrivilegeNameW
ReportEventW
EnumDependentServicesA
CryptReleaseContext
ImpersonateNamedPipeClient
GetSecurityDescriptorGroup
GetMultipleTrusteeW
CryptGetUserKey
RegCloseKey

shell32

SHGetPathFromIDListW
SHGetPathFromIDListA
DragQueryFileA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 292KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zsb39m.v
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

owgr5ag4
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c8cc0dd1fc6a77ef7e9e5c46ef836c1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

msvcrt

Sections

.text Size: 292KB - Virtual size: 296KB

.rdata Size: 4KB - Virtual size: 8KB

.data Size: 22KB - Virtual size: 24KB

zsb39m.v Size: 45KB - Virtual size: 48KB

owgr5ag4 Size: 4KB - Virtual size: 4KB

.text
Size: 292KB - Virtual size: 296KB

.rdata
Size: 4KB - Virtual size: 8KB

.data
Size: 22KB - Virtual size: 24KB

zsb39m.v
Size: 45KB - Virtual size: 48KB

owgr5ag4
Size: 4KB - Virtual size: 4KB