0302160f2f3a301fa0b826bc5c9b174b97c6f0b2318d0c00caa284b178ecb16d

Sharing

Copy URL Twitter E-mail

General

Target

0302160f2f3a301fa0b826bc5c9b174b97c6f0b2318d0c00caa284b178ecb16d
Size

403KB
MD5

373d461eb199115bb6e5c06b33dcaed5
SHA1

cea08ff326964a2188ef84c77884a15206451ed6
SHA256

0302160f2f3a301fa0b826bc5c9b174b97c6f0b2318d0c00caa284b178ecb16d
SHA512

301ca80dd64919af3b769adaa0aff097549a261ed21cd77a9107dd5a16f5833597cb9cfb32d178bb66749a3feefac915e445132c68ac5921cf4484369f7cd45a
SSDEEP

6144:Qm0OLT30C+FYkZj7HwKSmCWT+D3on5LVMeYSfsCRImQAAtAgdNj:Qm0eT30vJ7Q/mz24n5LyeFfsEImQ

Score

N/A

Malware Config

Signatures

Files

0302160f2f3a301fa0b826bc5c9b174b97c6f0b2318d0c00caa284b178ecb16d
.exe windows x86

a8612b2c1a52f6f31e909d79b1ad4660

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

BackupWrite
GlobalFree
LoadLibraryA
GetConsoleScreenBufferInfo
GlobalMemoryStatusEx
WriteProfileStringA
FillConsoleOutputAttribute
CloseHandle
FlushFileBuffers
HeapSize
IsProcessorFeaturePresent
HeapReAlloc
GetStringTypeW
LCMapStringW
WriteConsoleW
SetStdHandle
GetProcessHeaps
LoadLibraryW
Sleep
HeapFree
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
GetProcAddress
lstrcmpiA
GetLastError
GetStdHandle
GetProfileIntA
MultiByteToWideChar
CreateActCtxA
SetConsoleCursorPosition
OpenProcess
WaitForSingleObject
GetCurrentProcess
HeapAlloc
LoadResource
FreeLibrary
SetFilePointer
lstrcmpA
FindResourceA
CreateFileA
GetFullPathNameA
FillConsoleOutputCharacterA
ExitProcess
RtlUnwind
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
HeapCreate
GetModuleFileNameW
WriteFile
GetModuleHandleW
TerminateProcess
EncodePointer
IsDebuggerPresent
GetCommandLineA
HeapSetInformation
GetStartupInfoW
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
CreateFileW

user32

GetSystemMetrics
LoadImageA
GetDlgItemTextA
SetDlgItemTextA
PostMessageA
DefWindowProcA
EndDialog
GetDlgItem
ReleaseDC
GetWindowLongA
GetMenu
GetDC
GetNextDlgTabItem
ClientToScreen
GetClassNameA
SetTimer
PostQuitMessage
SendDlgItemMessageA
KillTimer
GetFocus
CallNextHookEx
MessageBeep
wsprintfA
WindowFromPoint
GetClientRect
SendMessageA
BeginPaint

gdi32

EndPage
BitBlt
LineTo
StartPage
CreateHatchBrush
DeleteDC
GetDeviceCaps
SetBkColor
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
Rectangle
StartDocA
Ellipse
Escape
CreatePen
EndDoc
MoveToEx

comdlg32

PrintDlgA

ole32

CoUnmarshalInterface
OleFlushClipboard
OleUninitialize
OleInitialize
CreateStreamOnHGlobal

psapi

GetModuleBaseNameA
EnumProcessModules
GetModuleFileNameExA
GetProcessMemoryInfo

userenv

GetProfilesDirectoryA

winmm

timeGetTime
timeBeginPeriod

version

GetFileVersionInfoW
GetFileVersionInfoSizeA
GetFileVersionInfoA

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a8612b2c1a52f6f31e909d79b1ad4660

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

psapi

userenv

winmm

version

Sections

.text Size: 51KB - Virtual size: 50KB

.rdata Size: 209KB - Virtual size: 209KB

.data Size: 22KB - Virtual size: 30KB

.rsrc Size: 114KB - Virtual size: 113KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 51KB - Virtual size: 50KB

.rdata
Size: 209KB - Virtual size: 209KB

.data
Size: 22KB - Virtual size: 30KB

.rsrc
Size: 114KB - Virtual size: 113KB

.reloc
Size: 6KB - Virtual size: 5KB