ba468f06a93f1480cfa966490eadbb3c0b43a111e8ed6bfe8665517fedd7a0c9

Sharing

Copy URL

Twitter E-mail

General

Target

ba468f06a93f1480cfa966490eadbb3c0b43a111e8ed6bfe8665517fedd7a0c9
Size

1.1MB
MD5

159ea00ec06f9e736ca489b2786d2a97
SHA1

b2cff43ea82f42aa944798b69ce00d5d70327d66
SHA256

ba468f06a93f1480cfa966490eadbb3c0b43a111e8ed6bfe8665517fedd7a0c9
SHA512

dcf8c54a01a9e015f30d7b2a9d8c6dacf1bd04f611f55840d5efb6c90fbecb016076daeebc610d19993e389961f75ae6b3886a1cef0795a7391b06c31d122a36
SSDEEP

24576:7EJV1JjNr7sG6dyebbdwn6T1G3jSt0nwXC7p95W2l3/ruEGGFH4o/b:7kVidyel2lNwXC7p9BjuEG+D

Score

N/A

Malware Config

Signatures

Files

ba468f06a93f1480cfa966490eadbb3c0b43a111e8ed6bfe8665517fedd7a0c9
.exe windows x86

0c778b0b0c7829f7bcad22532bf47f24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryW
ReadFile
GetFileSize
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
GetVersionExA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
SetEndOfFile
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
DeleteFileW
FreeEnvironmentStringsA
GetModuleFileNameA
RtlUnwind
UnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
FatalAppExitA
InitializeCriticalSection
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
GetCurrentThread
TlsGetValue
SetLastError
TlsFree
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
GetVersion
GlobalAlloc
GlobalLock
GlobalUnlock
CreateFileW
WriteFile
CloseHandle
Sleep
UnmapViewOfFile
CopyFileW
SetFileAttributesW
FindResourceW
SizeofResource
LoadResource
LockResource
lstrcpyW
CreateFileMappingW
GetLastError
OpenFileMappingW
MapViewOfFile
MultiByteToWideChar
GetSystemTime
lstrcmpW
GetModuleFileNameW
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
ExitThread
GetCurrentDirectoryW
lstrcatW
lstrlenW
FreeEnvironmentStringsW
TlsSetValue
GetCurrentThreadId
CreateThread
WideCharToMultiByte
HeapFree
GetCurrentProcess
TerminateProcess
ExitProcess
HeapAlloc
SetEnvironmentVariableA

user32

GetCaretPos
GetDC
PostMessageW
DispatchMessageW
ClientToScreen
GetMessageW
RegisterClassExW
LoadCursorW
LoadIconW
ReleaseDC
TranslateMessage
UpdateWindow
ShowWindow
SetWindowLongW
CreateWindowExW
SetWindowTextW
LoadImageW
ScreenToClient
PtInRect
SystemParametersInfoW
GetWindowRect
SetCursor
GetCursorPos
SetCapture
ReleaseCapture
CharNextW
keybd_event
EmptyClipboard
SetClipboardData
OpenClipboard
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
IsWindow
GetClientRect
GetSystemMetrics
DrawTextW
CallWindowProcW
EndDialog
GetWindowLongW
SetFocus
MoveWindow
BeginPaint
EndPaint
DialogBoxParamW
MessageBoxW
DestroyWindow
PostQuitMessage
DefWindowProcW
InvalidateRect
SendMessageW

gdi32

CreateFontIndirectW
CreatePen
MoveToEx
LineTo
CreateRectRgn
CombineRgn
PtInRegion
GetObjectW
SetStretchBltMode
CreateCompatibleDC
StretchBlt
DeleteDC
SelectObject
PatBlt
CreateFontW
SetTextColor
SetBkMode
CreateBrushIndirect
DeleteObject
GetStockObject
GetTextExtentPointW
CreateDCW

comdlg32

GetSaveFileNameW
ChooseFontW
GetOpenFileNameW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

ShellExecuteW

ole32

CoUninitialize
CoCreateInstance
CoInitialize

winmm

mciSendCommandW
mciGetErrorStringW

wininet

InternetCloseHandle
InternetOpenUrlW
InternetOpenW
InternetReadFile

Sections

.text
Size: 356KB - Virtual size: 355KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 724KB - Virtual size: 720KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c778b0b0c7829f7bcad22532bf47f24

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

winmm

wininet

Sections

.text Size: 356KB - Virtual size: 355KB

.rdata Size: 724KB - Virtual size: 720KB

.data Size: 32KB - Virtual size: 317KB

.rsrc Size: 56KB - Virtual size: 53KB

.text
Size: 356KB - Virtual size: 355KB

.rdata
Size: 724KB - Virtual size: 720KB

.data
Size: 32KB - Virtual size: 317KB

.rsrc
Size: 56KB - Virtual size: 53KB