d0199ec8797d800bea4eed2ead8f15636b31afd467439f24804c9b2ae029b0d2

Sharing

Copy URL Twitter E-mail

General

Target

d0199ec8797d800bea4eed2ead8f15636b31afd467439f24804c9b2ae029b0d2
Size

168KB
MD5

3670d47d2f9a4b9ca338b0c7da411120
SHA1

681948460c98d3aab1ebcd295ac2153705a3a1e0
SHA256

d0199ec8797d800bea4eed2ead8f15636b31afd467439f24804c9b2ae029b0d2
SHA512

59c097ab911b67620224d8225631a673571c9895cde83ce27d666abb05dcf1d567d73003427cd5281aaab077ba8027fd0a1b297a48ba364a8065c21667389634
SSDEEP

3072:usUBVad60ihIBJ1hm81z8rY+/Mv1ytxkZw8ak//UFTkePAUe:usDihSJ1hm81qY+/Mvy+MfAUe

Score

N/A

Malware Config

Signatures

Files

d0199ec8797d800bea4eed2ead8f15636b31afd467439f24804c9b2ae029b0d2
.exe windows x86

b131809f6b8dde12b7f6d6932b6f1862

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCompressedFileSizeW
CreateWaitableTimerW
PostQueuedCompletionStatus
GetSystemDefaultLangID
GetCommandLineW
GetEnvironmentVariableW
GetDriveTypeW
GetSystemDefaultUILanguage
FindResourceW
GetLogicalDriveStringsW
HeapFree
GetEnvironmentStringsW
ExitThread
GetSystemDefaultLCID
GetCommandLineA
GetDriveTypeA
lstrcatA
GetBinaryTypeW
GetEnvironmentVariableA
GetACP
SetCurrentDirectoryA
GetStdHandle
GetLogicalDriveStringsA
SetFileApisToOEM
GetModuleHandleA
GetDiskFreeSpaceExA
CreateProcessA
GetFileAttributesW
OpenSemaphoreA

user32

CreateCursor
GetTopWindow
CharToOemBuffW
wvsprintfA
RegisterWindowMessageA
IsZoomed
SetLastErrorEx
OemToCharW
GetClassLongA
MonitorFromRect
GetScrollPos
DialogBoxParamA
FindWindowA
UpdateWindow
SetWindowTextA
AllowSetForegroundWindow
GetSystemMetrics
SystemParametersInfoA
HiliteMenuItem
CheckRadioButton
GetKeyboardType
DdeQueryStringA
SetThreadDesktop
DrawMenuBar
InSendMessageEx
GetWindowLongW
GetKeyboardLayout
DrawTextExA
FindWindowW
GetProcessWindowStation
GetParent
IsClipboardFormatAvailable
SetMenuItemBitmaps
UnregisterClassW
IsCharAlphaA
InsertMenuItemA
VkKeyScanW
SetCursor
DdeInitializeW
DestroyWindow
IsCharUpperA
DefMDIChildProcA
GetMessagePos
IsRectEmpty

gdi32

GetTextExtentPointW
GetStockObject
EnumFontFamiliesExW

ole32

CoInitialize

Exports

Exports

?HonePitsOlesdyneToshlayom@@YG_KACUKnitAlanHons@@ACUtagMSG@@U_GUID@@AC_J@Z
?SecsGedserneexpoWoreWisexi@@YG_KAC_KPC_JACD@Z
?SkipTowypingWadswackTaka@@YGKPC_KMACURitzLadsEide@@USofaSlotZees@@PCN@Z
?Vetodarefazehoger@@YG_KPCHPC_KPCU_SYSTEMTIME@@PC_J@Z

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b131809f6b8dde12b7f6d6932b6f1862

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 84KB

.data Size: 27KB - Virtual size: 26KB

.rsrc Size: 24KB - Virtual size: 24KB

.xdata Size: 12KB - Virtual size: 12KB

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 84KB - Virtual size: 84KB

.data
Size: 27KB - Virtual size: 26KB

.rsrc
Size: 24KB - Virtual size: 24KB

.xdata
Size: 12KB - Virtual size: 12KB

.reloc
Size: 18KB - Virtual size: 18KB