6c3995e26e895b4f365c8d741c9f4516453d01cd69da6775fbda6e570b9a0d6b

Sharing

Copy URL Twitter E-mail

General

Target

6c3995e26e895b4f365c8d741c9f4516453d01cd69da6775fbda6e570b9a0d6b
Size

393KB
MD5

10f8e7b6b4450a39a3695ac40aeb2482
SHA1

492c9380603d75dfdb10e3bf14e71d71714997b9
SHA256

6c3995e26e895b4f365c8d741c9f4516453d01cd69da6775fbda6e570b9a0d6b
SHA512

1fb057917838e5a8252acd21b54d049738d2ffa09de89171bd36d05c31ae7b7acf4e92efcedc940056b1174a475bf618a3e9724b08c3a65a276cf44b3f3f856c
SSDEEP

6144:ojdBFq3wCotinN9sCupW677JsJusDWs0xTjFVPUFBUJ4duHK62pJ0ryf+e/0AI:cdBCwCginN9sC96PaJ5DupPUzTxWe/i

Score

N/A

Malware Config

Signatures

Files

6c3995e26e895b4f365c8d741c9f4516453d01cd69da6775fbda6e570b9a0d6b
.exe windows x86

503f1c6078fcda63130ff6ff26ed9ffb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeleteFileA
lstrcpyA
FlushFileBuffers
SetStdHandle
LCMapStringW
GetStringTypeW
RtlUnwind
HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
GetConsoleMode
GetConsoleCP
SetFilePointer
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
HeapCreate
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
FileTimeToLocalFileTime
GetCurrentProcessId
GetTickCount
LoadLibraryW
WriteFile
InitializeCriticalSectionAndSpinCount
SetLastError
TlsFree
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsAlloc
CloseHandle
FillConsoleOutputAttribute
GetModuleHandleA
FindNextFileA
DeviceIoControl
GetConsoleScreenBufferInfo
LoadLibraryA
FindClose
GlobalFree
SetFileAttributesA
CopyFileA
BackupWrite
GetProcessHeaps
GetProcAddress
GetLastError
FindFirstFileA
GetStdHandle
CreateDirectoryA
MultiByteToWideChar
lstrcatA
FileTimeToSystemTime
GetFullPathNameA
MulDiv
SetConsoleCursorPosition
GetFileAttributesA
Sleep
WaitForSingleObject
QueryPerformanceCounter
HeapAlloc
LoadResource
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
IsBadReadPtr
HeapValidate
IsProcessorFeaturePresent
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EncodePointer
RaiseException
CreateFileA
FillConsoleOutputCharacterA
GetSystemTimeAsFileTime
GetModuleFileNameW
GetStartupInfoW
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
DecodePointer
GetModuleHandleW
ExitProcess
GetCommandLineA
HeapSetInformation
CreateFileW

user32

MoveWindow
LookupIconIdFromDirectory
SetMenuItemInfoA
DestroyMenu
SetClipboardData
UpdateWindow
GetDlgItemTextW
SetWindowTextA
OpenClipboard
GetMenuItemCount
GetMenuStringA
GetMenuItemInfoA
GetCursorPos
EndPaint
CloseClipboard
DestroyAcceleratorTable
SetWindowRgn
GetWindowRect
PostQuitMessage
TrackPopupMenu
GetMenuItemID
GetSubMenu
CopyImage
GetFocus
LoadMenuA
GetClientRect
SendMessageA
BeginPaint
GetDC
SetRect
UnionRect
InvalidateRect
ReleaseDC
EmptyClipboard
GetMenuState
EndDialog
DefWindowProcA

gdi32

MoveToEx
EndPage
PatBlt
GetTextExtentPoint32A
LineTo
SetTextColor
DeleteDC
CreateFontA
GetDeviceCaps
SetBkMode
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GdiSetBatchLimit
StartDocA
FillRgn
CreateRoundRectRgn
CreateRectRgn
Escape
CreatePen
EndDoc
GetStockObject
PaintRgn
CreateSolidBrush
TextOutA
StartPage

comdlg32

PrintDlgA

ole32

CoInitialize
OleUninitialize
OleFlushClipboard
OleInitialize
CreateStreamOnHGlobal
CoUnmarshalInterface

ws2_32

recv
send

userenv

GetProfilesDirectoryA

avifil32

AVIStreamCreate
AVIFileInit

version

GetFileVersionInfoW

Sections

.text
Size: 202KB - Virtual size: 202KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.roba
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.corn
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rezus
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

503f1c6078fcda63130ff6ff26ed9ffb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

ws2_32

userenv

avifil32

version

Sections

.text Size: 202KB - Virtual size: 202KB

.rdata Size: 84KB - Virtual size: 84KB

.data Size: 4KB - Virtual size: 12KB

.roba Size: 7KB - Virtual size: 7KB

.corn Size: 39KB - Virtual size: 39KB

.rezus Size: 41KB - Virtual size: 41KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 202KB - Virtual size: 202KB

.rdata
Size: 84KB - Virtual size: 84KB

.data
Size: 4KB - Virtual size: 12KB

.roba
Size: 7KB - Virtual size: 7KB

.corn
Size: 39KB - Virtual size: 39KB

.rezus
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 12KB - Virtual size: 12KB