0b00ba25c7d90ae29aa35242b33254ac837f2a7108b8e12c83bdb6ab3f9085fc

Sharing

Copy URL Twitter E-mail

General

Target

0b00ba25c7d90ae29aa35242b33254ac837f2a7108b8e12c83bdb6ab3f9085fc
Size

191KB
MD5

0d1e6402ab3e96a9b1fde651f319a2d9
SHA1

4e5816c081c1914ab3dc384f7c265ab9e2924d5e
SHA256

0b00ba25c7d90ae29aa35242b33254ac837f2a7108b8e12c83bdb6ab3f9085fc
SHA512

5c6a9a84970e765a93d07a1c159baeca94d8d58319619f7f9de9586e1a122d19511187849d6a6a9cd4d510b86e819f4a54384dfca762f0f8c1030b439e6dde50
SSDEEP

3072:OGvF1nIIYT2IKDm1hvhdRsTvn3oMBuuMvb1j/aF/tySxCEelxU1JZvKQSR:OGa2IKa1hZdR0/3oMBHMpj/k/tFxCnlr

Score

N/A

Malware Config

Signatures

Files

0b00ba25c7d90ae29aa35242b33254ac837f2a7108b8e12c83bdb6ab3f9085fc
.exe windows x86

e3046f405a5240ce94c63170f709cbe1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
EnumSystemLocalesA
GetCurrentDirectoryW
LeaveCriticalSection
SetFilePointer
FileTimeToLocalFileTime
OpenEventW
SetEndOfFile
SetEnvironmentVariableA
GetVersionExA
GetExitCodeProcess
GetDateFormatA
InterlockedExchange
GetConsoleOutputCP
HeapFree
DeleteCriticalSection
DeleteFileW
FindFirstFileW
GlobalLock
GetStartupInfoA
GetLocaleInfoA
GetStringTypeA
ReadFile
GetModuleFileNameW
GetCommandLineA
SetLastError
GetACP
GetSystemTimeAsFileTime
CompareStringW
InterlockedDecrement
GetTempPathW
IsValidCodePage
MulDiv
LocalFree
GetCPInfo
GlobalSize
FindClose
lstrcpynW
VirtualAllocEx
GetProcAddress
LoadLibraryA
LCMapStringW
LCMapStringA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
HeapSize
VirtualQuery
RtlUnwind
IsBadWritePtr
VirtualAlloc
HeapAlloc
FlushFileBuffers
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
WriteFile
GetCurrentProcess
TerminateProcess
ExitProcess
GetLastError
GetModuleHandleA
lstrlenW
WaitForSingleObject
GetDriveTypeA
GetSystemInfo
CloseHandle
QueryPerformanceCounter
CreateFileW
GetStdHandle
WriteConsoleW
VirtualProtect
lstrcmpiW
GetProcessHeap
GetDateFormatW
GetCurrentDirectoryA
HeapReAlloc
GetOEMCP
SetStdHandle
FindResourceW
MultiByteToWideChar
GetStringTypeW
GetVersionExW
FileTimeToSystemTime
lstrcmpW
GlobalUnlock
FormatMessageW
CreateMutexW
VirtualFree
GlobalFree
GetModuleFileNameA
GetTimeZoneInformation
CreateEventW
UnhandledExceptionFilter
TlsFree
CreateFileA
SetUnhandledExceptionFilter
lstrcatW

user32

GetMenuItemCount
CallWindowProcA
GetMenuItemID
PtInRect
OpenClipboard
DrawEdge
CreateDialogIndirectParamW
SetForegroundWindow
CreateCursor
GetMenuStringW
GetWindowRect
IsChild
CreateCaret
GetSystemMetrics
GetMenuState
FrameRect
DialogBoxParamW
DrawMenuBar
DestroyCaret
MapWindowPoints
IsIconic
FillRect
ToAscii
UpdateWindow
SetParent
TrackPopupMenu
EnableMenuItem
GetDC
SetScrollPos
GetMonitorInfoW
wsprintfW
AppendMenuW
DispatchMessageW
RealChildWindowFromPoint
GetSubMenu
ModifyMenuW
ReleaseCapture
DestroyWindow
RedrawWindow
GetKeyState
GetKeyboardState
LoadImageW
BeginDeferWindowPos
InsertMenuW
LoadBitmapW
CheckMenuItem
DrawFrameControl
SetFocus
ShowCaret
TranslateMessage
WindowFromPoint
GetFocus
SendDlgItemMessageW
GetClassNameW
CreateMenu
EndDeferWindowPos
LoadMenuW
GetActiveWindow
GetSysColor
SetCursor
ShowScrollBar
SetDlgItemTextW
RegisterClassExW
DrawTextExW
InflateRect
DestroyIcon

gdi32

DPtoLP
Rectangle
SetTextColor
SetBrushOrgEx
SetROP2
CreatePatternBrush
GetDeviceCaps
SetBkColor
CreatePen
CreateSolidBrush
CreateFontW
GetROP2
EndDoc
CreateCompatibleDC
SelectObject
CreateBitmap
GetPixel
ExtTextOutW
SaveDC
MoveToEx
GetTextMetricsW
DeleteObject
SetTextAlign
CreateHatchBrush
StartPage
GetObjectW
DeleteDC
GetStockObject
GetTextExtentPoint32W
SetBkMode
SetWindowOrgEx
BitBlt
CreateFontIndirectW
RemoveFontResourceW

comdlg32

ChooseFontA
GetSaveFileNameA
ChooseColorW
GetFileTitleW
GetFileTitleA
PageSetupDlgW
GetSaveFileNameW
ChooseFontW
PrintDlgA
GetOpenFileNameW
FindTextW
PrintDlgW
ChooseColorA
PageSetupDlgA
ReplaceTextA
ReplaceTextW
FindTextA
GetOpenFileNameA

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zoitxld
Size: - Virtual size: 76KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 97KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e3046f405a5240ce94c63170f709cbe1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 51KB - Virtual size: 111KB

.rsrc Size: 4KB - Virtual size: 32KB

zoitxld Size: - Virtual size: 76KB

.text Size: 97KB - Virtual size: 100KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 51KB - Virtual size: 111KB

.rsrc
Size: 4KB - Virtual size: 32KB

zoitxld
Size: - Virtual size: 76KB

.text
Size: 97KB - Virtual size: 100KB