24c63e6218445e66d9858a45a77b45a8f18b551a8444cd9d1b8ceaf5bfabde14

Sharing

Copy URL Twitter E-mail

General

Target

24c63e6218445e66d9858a45a77b45a8f18b551a8444cd9d1b8ceaf5bfabde14
Size

183KB
MD5

1bd51c66e95ec722fae4c26b2e81e850
SHA1

5f1d960a4b66396aeffb9e735623c5356eb3c2b2
SHA256

24c63e6218445e66d9858a45a77b45a8f18b551a8444cd9d1b8ceaf5bfabde14
SHA512

92fe336ec2b2a93f0116442ee129155aa8d2c6f1204d0645becc87c483fdd0964736e8dd8e53d50d6b3f9c325ad1e9634dacf9fb8fa1acd2d20e2cdb324e85ca
SSDEEP

3072:hZ3emkuuWVKaq2pmyYWAdkN5S1Fov0XoWW1JCUrAagcGRPau:hRemHuW7mpoSsv0XoWW1rR8Bau

Score

N/A

Malware Config

Signatures

Files

24c63e6218445e66d9858a45a77b45a8f18b551a8444cd9d1b8ceaf5bfabde14
.exe windows x86

d0f63836356e650744c11d6153bcf26c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

URLDownloadToFileW
HlinkSimpleNavigateToString
CreateAsyncBindCtxEx

ole32

CoGetMalloc
WriteClassStg
CoFreeLibrary
CoSuspendClassObjects
CoGetMarshalSizeMax
CoRevokeClassObject
OleCreateFromData

advapi32

GetTokenInformation
GetSecurityDescriptorSacl
CreateProcessAsUserA
ImpersonateLoggedOnUser
GetServiceDisplayNameW
RegQueryValueW
LookupAccountSidA

gdi32

CreateBrushIndirect
AddFontMemResourceEx
AngleArc
CreateColorSpaceA
AddFontResourceExA
CreateCompatibleBitmap

opengl32

glClearColor
glRectfv
glLoadMatrixf
glLoadName
glLineStipple
glRasterPos4d
glRasterPos3s
glTexGenf

kernel32

IsProcessorFeaturePresent
SetStdHandle
WriteConsoleW
HeapSize
ReadFile
CloseHandle
CreateFileW
InitializeCriticalSectionAndSpinCount
GetStringTypeW
MultiByteToWideChar
LCMapStringW
FlushFileBuffers
LoadLibraryW
LocalFlags
GetConsoleTitleW
SetHandleCount
EnumUILanguagesA
CreateJobObjectA
GetCommandLineA
GetLastError
HeapReAlloc
HeapFree
HeapAlloc
HeapSetInformation
GetStartupInfoW
EnterCriticalSection
LeaveCriticalSection
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
GetStdHandle
GetFileType
DeleteCriticalSection
HeapCreate
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
Sleep
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

etuyyjs
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d0f63836356e650744c11d6153bcf26c

Headers

DLL Characteristics

File Characteristics

Imports

urlmon

ole32

advapi32

gdi32

opengl32

kernel32

Sections

.text Size: 45KB - Virtual size: 45KB

.data Size: 4KB - Virtual size: 1.2MB

.ddata Size: 13KB - Virtual size: 13KB

.rsrc Size: 111KB - Virtual size: 110KB

.reloc Size: 7KB - Virtual size: 35KB

etuyyjs Size: - Virtual size: 4KB

.text
Size: 45KB - Virtual size: 45KB

.data
Size: 4KB - Virtual size: 1.2MB

.ddata
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 111KB - Virtual size: 110KB

.reloc
Size: 7KB - Virtual size: 35KB

etuyyjs
Size: - Virtual size: 4KB