6228e1326530594379bf3b52d77c654bbb033f3a5da9c88d31260c2951a3eab4

Sharing

Copy URL

Twitter E-mail

General

Target

6228e1326530594379bf3b52d77c654bbb033f3a5da9c88d31260c2951a3eab4
Size

100KB
MD5

06efdfbcf5666a7fdcf0c3bc62940300
SHA1

92454c5f5da90abe12a993544d264d994efd63c5
SHA256

6228e1326530594379bf3b52d77c654bbb033f3a5da9c88d31260c2951a3eab4
SHA512

bba4512d98cf5f00ba60f0ce53d4f60589ae0af3067fc11c6578b9a8fa2df0494893525b418d9fc6fc66bdf9cbc4bba83b03e6a05a94dad29f81f5a529db8b59
SSDEEP

1536:VBZDKX7ZnXdNVijGu6byvxYYc7xRO6KsPNf1WsmT09ltK/dVvhc+IC4hG520+xY:VBZDKrZfqGuPVURVrET09lY/dVvdIxW

Score

N/A

Malware Config

Signatures

Files

6228e1326530594379bf3b52d77c654bbb033f3a5da9c88d31260c2951a3eab4
.exe windows x86

5b03cb715e5c08b0b7b2a711cf77a499

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
Sleep
GetSystemDirectoryA
GetWindowsDirectoryA
GetProcAddress
LoadLibraryA
LocalUnlock
LocalLock
LocalAlloc
CreateDirectoryA
SetCurrentDirectoryA
CloseHandle
ReadFile
WriteFile
SetFilePointer
GetFileSize
FileTimeToSystemTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
CreateFileA
FindClose
FindFirstFileA
CompareFileTime
GetSystemTimeAsFileTime
WideCharToMultiByte
VirtualProtect
GetLocaleInfoA
lstrcpyA
CompareStringW
CompareStringA
FlushFileBuffers
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
VirtualQuery
InterlockedExchange
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetSystemInfo
GetFileType
lstrcatA
FreeLibrary
GetLastError
FormatMessageA
LocalFree
SetHandleCount
GetEnvironmentStringsW
SetEnvironmentVariableA
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStrings
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapReAlloc
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
HeapFree
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA

user32

UpdateWindow
TranslateMessage
MoveWindow
GetClientRect
GetDlgItem
SetWindowTextA
SendMessageA
CreateDialogParamA
CreateDialogIndirectParamA
PeekMessageA
wvsprintfA
MessageBoxA
GetMessageA
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
PostQuitMessage
DefWindowProcA
KillTimer
DestroyWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
GetSystemMetrics
CreateWindowExA
ShowWindow
SetTimer

advapi32

RegCreateKeyExA
RegSetValueExA
RegOpenKeyA
RegQueryValueExA

comctl32

ord17

urlmon

URLDownloadToFileA

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b03cb715e5c08b0b7b2a711cf77a499

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

urlmon

Sections

.text Size: 48KB - Virtual size: 48KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 13KB

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 48KB - Virtual size: 48KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 13KB

.rsrc
Size: 32KB - Virtual size: 32KB