a42af0f3e86e91cddf78b5b534223b1108ed61293f7022bd80851eaab4cd852e

Sharing

Copy URL Twitter E-mail

General

Target

a42af0f3e86e91cddf78b5b534223b1108ed61293f7022bd80851eaab4cd852e
Size

288KB
MD5

0d61b16641e13830ba51351505267d80
SHA1

c65283f86cbc5fd62d5a51a9086035d42972dd95
SHA256

a42af0f3e86e91cddf78b5b534223b1108ed61293f7022bd80851eaab4cd852e
SHA512

c8762dd8287bc2920c049cc76d392e33eef495efe67db40a67fac7522dea2a1ad7ac691961d2d414e98b9e1efd15d4f4bf216ef9f1c864387fda943de438bd91
SSDEEP

6144:Ozh60eiImbQ5od1ImdklK4hv5mwMAUMCFFv9Dzo0naGN:OFj8diklK/vNPaGN

Score

N/A

Malware Config

Signatures

Files

a42af0f3e86e91cddf78b5b534223b1108ed61293f7022bd80851eaab4cd852e
.exe windows x86

06cd870898e5a3df9bcb3719cfd1cff3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
SetStdHandle
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
GetVersion
GetStringTypeW
GetStringTypeA
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetModuleHandleA
GetCurrentProcess
TerminateProcess
ExitProcess
HeapFree
HeapAlloc
GetSystemDirectoryA
GetVolumeInformationA
SetLastError
CreateSemaphoreA
ReleaseSemaphore
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryA
GetProcAddress
LocalLock
LocalUnlock
LocalAlloc
LocalFree
FreeLibrary
SetFilePointer
GetDiskFreeSpaceExA
FileTimeToSystemTime
WinExec
FindFirstFileA
FindNextFileA
GetFileInformationByHandle
DeleteFileA
FindClose
GetTickCount
WaitCommEvent
WritePrivateProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetCommandLineA
GetModuleFileNameA
SetEndOfFile
Sleep
ClearCommError
GetOverlappedResult
WriteFile
ReadFile
SetEvent
WaitForSingleObject
TerminateThread
GetCommState
SetCommState
CreateFileA
SetCommMask
SetupComm
PurgeComm
GetCommTimeouts
SetCommTimeouts
GetLastError
CreateEventA
CreateThread
CloseHandle
SetThreadPriority
LCMapStringA
EscapeCommFunction

user32

CreateCaret
SetCaretBlinkTime
GetFocus
GetOpenClipboardWindow
DestroyCaret
DestroyWindow
PostQuitMessage
GetSubMenu
GetMenuState
IsWindowVisible
OpenClipboard
GetClipboardData
CloseClipboard
EmptyClipboard
SetClipboardData
SetWindowPos
DialogBoxParamA
SetCursor
DestroyMenu
GetCursorPos
SetCapture
CreatePopupMenu
AppendMenuA
TrackPopupMenuEx
ReleaseCapture
MoveWindow
DefWindowProcA
LoadIconA
LoadCursorA
RegisterClassA
EndDialog
SetFocus
SetCaretPos
CreateWindowExA
ShowWindow
GetMessageA
HideCaret
ShowCaret
BeginPaint
EndPaint
GetKeyState
MessageBeep
PeekMessageA
TranslateMessage
DispatchMessageA
FindWindowA
SetWindowTextA
GetWindowTextA
EnableWindow
IsDlgButtonChecked
GetDlgItem
SendMessageA
MessageBoxA
IsClipboardFormatAvailable
wsprintfA
PostMessageA
SendDlgItemMessageA
GetDlgItemInt
GetDlgItemTextA
GetForegroundWindow
SetForegroundWindow
ClientToScreen
InvalidateRect
GetMenu
CheckDlgButton
UpdateWindow
GetSystemMetrics
FillRect
SetDlgItemInt
SetDlgItemTextA
EnableMenuItem
GetDC
GetClientRect
ReleaseDC
SetRect
ScrollWindow
GetAsyncKeyState
CheckRadioButton

gdi32

Pie
Arc
Ellipse
LineTo
MoveToEx
CreatePen
SetPixel
IntersectClipRect
CreatePatternBrush
CreateBitmapIndirect
CreateHatchBrush
GetPixel
CreateCompatibleDC
GetDeviceCaps
CreateCompatibleBitmap
BitBlt
DeleteDC
DeleteObject
CreateSolidBrush
SetBkColor
SetTextColor
SelectObject
GetStockObject
TextOutW
SetROP2
TextOutA
CreateFontIndirectA
SetBkMode
Rectangle
GetTextColor
GetBkColor

comdlg32

ChooseColorA
ChooseFontA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

wsock32

closesocket
send
WSAStartup
WSACleanup
WSACancelAsyncRequest
ioctlsocket
socket
htons
connect
recv
WSAGetLastError
WSAAsyncGetHostByName

comctl32

ord6

ccb_aes

AES_set_encrypt_key128
AES_encrypt_128

ccb_rsa_pub

CSSP_RSAPublicKeyEncrypt

netapi32

Netbios

iphlpapi

GetAdaptersInfo

ws2_32

WSAWaitForMultipleEvents
WSAEnumNetworkEvents
WSACreateEvent
WSAEventSelect
WSACloseEvent

Sections

.text
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06cd870898e5a3df9bcb3719cfd1cff3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

wsock32

comctl32

ccb_aes

ccb_rsa_pub

netapi32

iphlpapi

ws2_32

Sections

.text Size: 204KB - Virtual size: 203KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 16KB - Virtual size: 92KB

.rsrc Size: 56KB - Virtual size: 55KB

.text
Size: 204KB - Virtual size: 203KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 16KB - Virtual size: 92KB

.rsrc
Size: 56KB - Virtual size: 55KB