67c6a31f0858479e57a849349058047e0b1ff8f8731c05262a7f11320e04ac7c

Sharing

Copy URL Twitter E-mail

General

Target

67c6a31f0858479e57a849349058047e0b1ff8f8731c05262a7f11320e04ac7c
Size

402KB
MD5

7066d7ed733333d682478e66b051811a
SHA1

82eab97bf5109387637b2f54e78aa60c92f76ef6
SHA256

67c6a31f0858479e57a849349058047e0b1ff8f8731c05262a7f11320e04ac7c
SHA512

75ac7f42b61515cef3f354dde427e4294d4fb8aee68fe276f4a5f60c2aad0ff15e01bde1e79742ebaa7af5b5657926ee77f1e45aa50a2427a8dd28b39fefc65d
SSDEEP

6144:lTBBi1pLcJciUZxksBB16EFEd2SD+fgdalp0:JvipLcrUZxkUpFEbq4dalp0

Score

N/A

Malware Config

Signatures

Files

67c6a31f0858479e57a849349058047e0b1ff8f8731c05262a7f11320e04ac7c
.exe windows x86

a359d446f1c835e9343c78fe69d4bd52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
MulDiv
SizeofResource
InitializeCriticalSection
GetCurrentThreadId
FreeResource
LockResource
LoadResource
FindResourceW
DeleteCriticalSection
LoadLibraryW
FreeLibrary
SetLastError
GetCommandLineW
GetCurrentProcess
TerminateProcess
MultiByteToWideChar
GlobalFlags
GetSystemInfo
CreateProcessW
VirtualQuery
HeapFree
HeapReAlloc
HeapAlloc
GetProcessHeap
ResetEvent
EnterCriticalSection
GetSystemTimeAsFileTime
WriteConsoleW
HeapSize
FlushFileBuffers
GetStringTypeW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
LCMapStringW
ReadConsoleW
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
GetFileType
SetFilePointerEx
DecodePointer
GetStdHandle
GetCommandLineA
GetModuleHandleExW
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
RaiseException
RtlUnwind
InitializeSListHead
QueryPerformanceCounter
GetStartupInfoW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
SetEvent
IsDebuggerPresent
FindFirstFileW
FindNextFileW
FindClose
GetModuleFileNameW
GetTickCount
WideCharToMultiByte
CreateFileW
GetLogicalDriveStringsW
GetComputerNameW
CreateEventW
ExitProcess
OpenEventW
Process32NextW
CloseHandle
Process32FirstW
CreateToolhelp32Snapshot
GetCurrentProcessId
GetProcAddress
GetModuleHandleW
LeaveCriticalSection
MoveFileW
GetFileAttributesW
GetLastError
SetFilePointer
GetFileSize
ReadFile
WriteFile
SetEndOfFile

user32

GetWindowThreadProcessId
MonitorFromWindow
WaitForInputIdle
MessageBoxW
GetMessageW
TranslateMessage
DispatchMessageW
ReleaseDC
GetDC
LoadImageW
GetParent
GetDesktopWindow
LoadCursorW
LoadIconW
LoadStringW
SendMessageW
GetWindowLongW
EnumWindows

gdi32

SetDIBColorTable
CreateCompatibleDC
CreateDIBSection
DeleteDC
GetObjectW
DeleteObject
SelectObject
GetDeviceCaps

ole32

CoInitializeEx
CreateStreamOnHGlobal
CoUninitialize

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_Destroy

bcrypt

BCryptGenerateSymmetricKey
BCryptCloseAlgorithmProvider
BCryptDestroyKey
BCryptImportKeyPair
BCryptSetProperty
BCryptEncrypt
BCryptGetProperty
BCryptOpenAlgorithmProvider

shlwapi

PathFindExtensionW

ws2_32

WSACleanup

gdiplus

GdipFree
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDisposeImage
GdipSetCompositingMode
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipDrawImageRectI
GdipGetImagePixelFormat
GdipAlloc
GdipCreateBitmapFromStream
GdipBitmapUnlockBits
GdipCloneImage
GdipGetImagePaletteSize
GdipGetImageHeight
GdiplusShutdown
GdiplusStartup
GdipGetImagePalette

Sections

.text
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a359d446f1c835e9343c78fe69d4bd52

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

comctl32

bcrypt

shlwapi

ws2_32

gdiplus

Sections

.text Size: 216KB - Virtual size: 216KB

.rdata Size: 67KB - Virtual size: 66KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 90KB - Virtual size: 90KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 216KB - Virtual size: 216KB

.rdata
Size: 67KB - Virtual size: 66KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 90KB - Virtual size: 90KB

.reloc
Size: 19KB - Virtual size: 18KB