b067702feb276f53618915875ae449aa0eed20f100d1d72e8f5aac1a253f34cb

Sharing

Copy URL Twitter E-mail

General

Target

b067702feb276f53618915875ae449aa0eed20f100d1d72e8f5aac1a253f34cb
Size

298KB
MD5

10969ec79c02a5c867e50f0147c81113
SHA1

8e0ce77d857ee46e4055f62a528eafde28fbe990
SHA256

b067702feb276f53618915875ae449aa0eed20f100d1d72e8f5aac1a253f34cb
SHA512

f3e207d513b055e41df3e2599a94ece0dd7c97cc583ea0690651b5c054458b10f3c3a6040d980938bddb144b4551755ed160ae4711e97120f586fe740e9395b6
SSDEEP

6144:mo4ZU+/hhAkvfYaaTkBF0sgvOY0OUse9zhm/gXm:KZU+/hhAkvfYackEsgGKUlzGgW

Score

N/A

Malware Config

Signatures

Files

b067702feb276f53618915875ae449aa0eed20f100d1d72e8f5aac1a253f34cb
.exe windows x86

adb67bc39be26c0351d094ab42a2c12a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendMessageTimeoutW
GetWindowInfo
MapDialogRect
DlgDirListComboBoxW
DdeAddData
GetMenuStringW
CopyAcceleratorTableW
DestroyAcceleratorTable
MessageBoxA
CharNextA
DeferWindowPos

urlmon

CopyBindInfo
FindMediaTypeClass
CoInternetCreateSecurityManager

wininet

GopherCreateLocatorA
InternetDial
InternetGetCookieW
FtpRenameFileW
InternetReadFileExW

kernel32

DecodePointer
SetStdHandle
SetFilePointer
GetConsoleCP
ReadFile
HeapSize
LoadLibraryW
HeapReAlloc
LCMapStringW
RtlUnwind
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
UnmapViewOfFile
CloseHandle
MapViewOfFile
GetLastError
CreateFileMappingA
FlushFileBuffers
BuildCommDCBAndTimeoutsW
CreateThread
CreateWaitableTimerW
VirtualLock
MoveFileWithProgressW
WriteConsoleW
InterlockedDecrement
InterlockedIncrement
HeapFree
HeapAlloc
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
GetCommandLineA
HeapSetInformation
GetStartupInfoW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
CreateFileW
GetCPInfo
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThreadId
GetProcAddress
GetACP
GetOEMCP
IsValidCodePage
Sleep
GetUserDefaultLCID
GetLocaleInfoW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
MultiByteToWideChar
HeapCreate
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
IsProcessorFeaturePresent
GetModuleFileNameA

Sections

.text
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adb67bc39be26c0351d094ab42a2c12a

Headers

DLL Characteristics

File Characteristics

Imports

user32

urlmon

wininet

kernel32

Sections

.text Size: 97KB - Virtual size: 97KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 5KB - Virtual size: 34KB

.rsrc Size: 180KB - Virtual size: 179KB

.text
Size: 97KB - Virtual size: 97KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 5KB - Virtual size: 34KB

.rsrc
Size: 180KB - Virtual size: 179KB