e6027b89707771e2fa29dabc598c7e5b754168bd00e2ba34f088866c560ce314

Sharing

Copy URL Twitter E-mail

General

Target

e6027b89707771e2fa29dabc598c7e5b754168bd00e2ba34f088866c560ce314
Size

529KB
MD5

094c73d6419edc96fd8a03da9b5992df
SHA1

94738eb5816d8b349e31d2d9d3c4c81f767de377
SHA256

e6027b89707771e2fa29dabc598c7e5b754168bd00e2ba34f088866c560ce314
SHA512

5635bf4b6710a6530aac56d7adb1c7e0367225c80e1636de33bc0be5674ea947eb63f1c4c68e6a7ecebc3e581ac1c2916bc67ccce02968b69f6e7001bb010b2c
SSDEEP

12288:Bnu7/h3DNox+UtgjvXE5kmMy4lKx3x4GaGHjssYxHa5:Ovoxrt4okzyDB/xjVYHa5

Score

N/A

Malware Config

Signatures

Files

e6027b89707771e2fa29dabc598c7e5b754168bd00e2ba34f088866c560ce314
.exe windows x86

803899665e49d8bec9afef08ccf1cb97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
RtlUnwind
HeapReAlloc
HeapAlloc
WriteConsoleW
OutputDebugStringA
MultiByteToWideChar
LCMapStringW
WriteFile
HeapCreate
GetEnvironmentStringsW
WideCharToMultiByte
HeapSize
HeapQueryInformation
HeapFree
IsProcessorFeaturePresent
RaiseException
CreateFileW
lstrcpyA
FillConsoleOutputAttribute
CancelIo
GetModuleHandleA
LocalAlloc
GetConsoleScreenBufferInfo
LoadLibraryA
GlobalFree
GetProcAddress
GetLastError
GetStdHandle
lstrcatA
SetConsoleCursorPosition
SetConsoleMode
LoadLibraryW
GlobalAlloc
GetTickCount
FormatMessageA
SetEvent
WaitForSingleObject
lstrlenA
FillConsoleOutputCharacterA
ExitProcess
OutputDebugStringW
FreeEnvironmentStringsW
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
DeleteCriticalSection
SetHandleCount
GetFileType
SetStdHandle
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
IsBadReadPtr
HeapValidate
SetLastError
GetModuleHandleW
FlushFileBuffers
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DecodePointer
EncodePointer
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
GetCurrentThreadId
TlsFree
CloseHandle

user32

CallWindowProcA
DialogBoxParamA
SendMessageW
CheckRadioButton
DispatchMessageA
EnumChildWindows
SendMessageTimeoutA
DefWindowProcA
EndDialog
EndPaint
DestroyWindow
GetSystemMenu
PostQuitMessage
DeleteMenu
wsprintfA
GetClientRect
SendMessageA
BeginPaint
GetDC
SetWindowLongA
MessageBoxA
UnregisterClassA
GetWindowLongA
CreateWindowExA
ReleaseDC

gdi32

GetTextExtentPoint32A
StartPage
CreateFontA
GetDeviceCaps
CreateFontIndirectA
SetBkColor
DeleteObject
SelectObject
Rectangle
StartDocA
SaveDC
Escape
CreatePen
GetClipBox
EndDoc
ExtTextOutA
RestoreDC
CreateSolidBrush
TextOutA
EndPage

comdlg32

FindTextW

ole32

CreateStreamOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
GetHGlobalFromStream
CoInitializeEx
CreateBindCtx

oleaut32

SysFreeString
SysAllocString

msimg32

GradientFill

winhttp

WinHttpSetTimeouts

Sections

.text
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 254KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

803899665e49d8bec9afef08ccf1cb97

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

oleaut32

msimg32

winhttp

Sections

.text Size: 143KB - Virtual size: 142KB

.rdata Size: 254KB - Virtual size: 254KB

.data Size: 10KB - Virtual size: 17KB

.rsrc Size: 104KB - Virtual size: 104KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 143KB - Virtual size: 142KB

.rdata
Size: 254KB - Virtual size: 254KB

.data
Size: 10KB - Virtual size: 17KB

.rsrc
Size: 104KB - Virtual size: 104KB

.reloc
Size: 16KB - Virtual size: 15KB