636bb67799ea7d7c210e387901526206cf56f7a29a04b79a29c647ab4b354ae7

Sharing

Copy URL Twitter E-mail

General

Target

636bb67799ea7d7c210e387901526206cf56f7a29a04b79a29c647ab4b354ae7
Size

53KB
MD5

0a37637d768b60b5063400e5192471d0
SHA1

9e337d3db5872603622619f4006aa61991901c87
SHA256

636bb67799ea7d7c210e387901526206cf56f7a29a04b79a29c647ab4b354ae7
SHA512

d543e7f199a343b2dd6fbb6306642aa41aa4c3fefdea22ea896f89c9d57fbe2ca05dae5f20cae6b7b22f712c4d66052aebb229fdb78455084c3ab55a941c5272
SSDEEP

1536:VOUOsa++Lie/OBN+dug0LtwUBC7X82ST:V+zLEBEduzLiU47v

Score

N/A

Malware Config

Signatures

Files

636bb67799ea7d7c210e387901526206cf56f7a29a04b79a29c647ab4b354ae7
.exe windows x86

1ada6ec9c946ddd20155056c6fd44670

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
FindClose
CreateProcessW
GetTimeZoneInformation
GetComputerNameW
lstrcpyW
GlobalLock
GetFileSizeEx
GlobalUnlock
ReadFile
IsBadReadPtr
GetExitCodeProcess
GetModuleHandleA
lstrcatA
GetTickCount
CreateMutexW
GetCommandLineA
LeaveCriticalSection
DisconnectNamedPipe
CreateDirectoryW
MultiByteToWideChar
GetFileSize
GetSystemTime
GetModuleFileNameW
WaitForSingleObject
CreateFileW
MoveFileExW
GetProcessHeap
GetLastError
HeapFree
lstrcatW
HeapAlloc
lstrcmpiW
SetFileTime
lstrlenW
UnmapViewOfFile
WriteProcessMemory
GetProcessTimes
WriteFile
CreateFileMappingW
ResetEvent
GetLogicalDrives
HeapReAlloc
lstrcmpiA
SetFilePointer
FindNextFileW
CopyFileW
SetFileAttributesW
EnterCriticalSection
OpenProcess
OpenMutexW
GetTempPathW
GetLocalTime
GetCurrentProcessId
CloseHandle
SetThreadPriority
GetSystemTimeAsFileTime
GetCurrentThreadId
SystemTimeToFileTime
MapViewOfFile
WideCharToMultiByte
InitializeCriticalSection
ExpandEnvironmentStringsW
GetUserDefaultUILanguage
lstrlenA
SetEndOfFile
GetVersionExW
FlushFileBuffers
Sleep
SetEvent
GetTempFileNameW
GetModuleFileNameA
lstrcpyA
CreateEventW
ReleaseMutex
FindFirstFileW
GetThreadPriority
DeleteFileW
FindResourceW
lstrcpynW
GetDriveTypeW
GetFileTime
CreateThread

user32

DispatchMessageW
FindWindowExW
MsgWaitForMultipleObjects
GetMessageW
GetDlgItem
GetDlgItemTextW
SendMessageW
CharLowerBuffA

Sections

.hyz
Size: 18KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbmx
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vojot
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.job
Size: 26KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ada6ec9c946ddd20155056c6fd44670

Headers

File Characteristics

Imports

kernel32

user32

Sections

.hyz Size: 18KB - Virtual size: 39KB

.sbmx Size: 5KB - Virtual size: 10KB

.vojot Size: 1024B - Virtual size: 1KB

.job Size: 26KB - Virtual size: 132KB

.rsrc Size: 1KB - Virtual size: 4KB

.hyz
Size: 18KB - Virtual size: 39KB

.sbmx
Size: 5KB - Virtual size: 10KB

.vojot
Size: 1024B - Virtual size: 1KB

.job
Size: 26KB - Virtual size: 132KB

.rsrc
Size: 1KB - Virtual size: 4KB