1f089dae04740076a093bcfe76d0721f3f1f050d731d7cfdfd1fd22a5b99d721

Sharing

Copy URL Twitter E-mail

General

Target

1f089dae04740076a093bcfe76d0721f3f1f050d731d7cfdfd1fd22a5b99d721
Size

151KB
MD5

1172278dfc7a4ad4d097312cfe646db0
SHA1

c195301244a2759e3f1988893ab1ccaac36f2a23
SHA256

1f089dae04740076a093bcfe76d0721f3f1f050d731d7cfdfd1fd22a5b99d721
SHA512

b898066c955a8f2a87eb04aeb4378173e214a2e8adc8fb467197191665338cdfcf08349954d4d0b8a156b20b39d859d3d72c06f979c98c39abeece3d94f8138d
SSDEEP

3072:+k7LbjFoQJpJETTdfAWNGNAHQoDdntzwIgxDHK+AQgqI5thQ5:d7Pj06WnQYtzIDqcg15ths

Score

N/A

Malware Config

Signatures

Files

1f089dae04740076a093bcfe76d0721f3f1f050d731d7cfdfd1fd22a5b99d721
.exe windows x86

c714df71f90e217c89dcdcd4e87da441

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeConnectList
CallWindowProcW
CascadeWindows
DispatchMessageA
GetCapture
EnumDisplayDevicesW
GetUserObjectInformationW
wsprintfW
PackDDElParam
keybd_event
WinHelpW

urlmon

URLDownloadToFileW
RevokeFormatEnumerator
IsLoggingEnabledA

shell32

FindExecutableW
ExtractAssociatedIconA
ExtractAssociatedIconW
DragQueryPoint
Shell_NotifyIconW

ole32

OleSaveToStream
GetHGlobalFromILockBytes
CoRevertToSelf
CoTaskMemRealloc
OleSetAutoConvert
CoGetPSClsid
OleCreateFromFile

wininet

GopherCreateLocatorW
InternetCombineUrlW
GetUrlCacheEntryInfoW
InternetOpenUrlA
DeleteUrlCacheEntry

gdi32

CloseFigure
Arc
CreateBrushIndirect
CreateDCA
AddFontResourceExW

opengl32

glRasterPos4i
glNormal3fv
glRasterPos4f
glPixelStorei
glTexCoord1f
wglCreateContext
glIsList

kernel32

SetStdHandle
WriteConsoleW
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
IsProcessorFeaturePresent
HeapSize
GetStringTypeW
MultiByteToWideChar
LCMapStringW
HeapReAlloc
HeapAlloc
CreateFileW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
DeleteCriticalSection
LoadLibraryW
GetCommandLineA
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
CloseHandle
WaitForMultipleObjects
CreateSemaphoreA
SetWaitableTimer
CreateWaitableTimerA
GetLastError
ReleaseSemaphore
Sleep
GetCurrentThreadId
WaitForSingleObject
FindFirstVolumeMountPointW
CopyFileA
ContinueDebugEvent
ReadFile
SetFileApisToOEM
CallNamedPipeW
ExitThread
CreateThread
RtlUnwind
HeapSetInformation
GetStartupInfoW
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
InterlockedIncrement
GetModuleHandleW
SetLastError
InterlockedDecrement
GetProcAddress
ExitProcess
HeapFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
EnterCriticalSection
LeaveCriticalSection
WriteFile
GetStdHandle

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c714df71f90e217c89dcdcd4e87da441

Headers

DLL Characteristics

File Characteristics

Imports

user32

urlmon

shell32

ole32

wininet

gdi32

opengl32

kernel32

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 9KB - Virtual size: 19KB

.rsrc Size: 100KB - Virtual size: 100KB

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 9KB - Virtual size: 19KB

.rsrc
Size: 100KB - Virtual size: 100KB