8604c9037e347d31147bf4e001cd2cc87b5e33975ca2d61075ca0efff8b9049c

Sharing

Copy URL Twitter E-mail

General

Target

8604c9037e347d31147bf4e001cd2cc87b5e33975ca2d61075ca0efff8b9049c
Size

329KB
MD5

064f174e76b78bdb4bb30146f6530701
SHA1

3e60434af6cd4cbe9fad987a76b3a887705e1060
SHA256

8604c9037e347d31147bf4e001cd2cc87b5e33975ca2d61075ca0efff8b9049c
SHA512

1aa6c8d8eec4e285bc14f3b80c6366917333f995baae228ea96251dde8bd619abd36e63aad1e0502aa760c2b13a0dddb9bd4c82909b90ed80c98729939d14a7e
SSDEEP

6144:UTJshbY88AGkBgkWiNPKDlRHV5NBZOf6Rf2a97VK4n/Sh+q3O/Xm758of+Xd1nq:UG7gkWLv15xTf2m7Qe/u+q3Ov4583Pnq

Score

N/A

Malware Config

Signatures

Files

8604c9037e347d31147bf4e001cd2cc87b5e33975ca2d61075ca0efff8b9049c
.exe windows x86

c741f92cdadc0a9cc8acb68f42bc9656

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

TransparentBlt

kernel32

GetEnvironmentStringsW
LoadLibraryExW
EnumUILanguagesW
LoadLibraryW
CreateFileMappingW
WideCharToMultiByte
SetStdHandle
MulDiv
SizeofResource
CreateFileA
SetLastError
GetProcAddress
GetCurrentThreadId
GetComputerNameExA
FreeEnvironmentStringsW
GetLastError
GetSystemTimeAsFileTime
GlobalLock
GetSystemDefaultUILanguage
GetStringTypeW
lstrcmpW
GetStdHandle
GetOEMCP
GlobalUnlock
DeleteCriticalSection
LockResource
LoadResource
UnhandledExceptionFilter
GetLocaleInfoA
DebugBreakProcess
GetLocaleInfoW
GetUserDefaultUILanguage
TerminateProcess
CreateActCtxW
GetCurrentProcess
GetEnvironmentStrings
FindResourceExW
MapViewOfFile
HeapAlloc
GetConsoleOutputCP
InitializeCriticalSection
LCMapStringW
GlobalAlloc
QueryPerformanceCounter
InterlockedDecrement
ExitProcess
GetTickCount
WriteConsoleA
OutputDebugStringA
SetUnhandledExceptionFilter
FormatMessageW
DeactivateActCtx
SearchPathW
lstrlenW
CreateFileW
GetCPInfo
MultiByteToWideChar
HeapCreate
InterlockedCompareExchange
ActivateActCtx
FlushFileBuffers
UnmapViewOfFile
GetFileType
GlobalFree
GetModuleFileNameW
GetStartupInfoA
InterlockedIncrement
InterlockedExchange
SetFilePointer
WriteFile
LoadLibraryExA
GetVersionExW
GetStringTypeA
lstrcmpiW
FlushInstructionCache
LCMapStringA
FreeEnvironmentStringsA
LocalFree
EnterCriticalSection
GetConsoleCP
WriteConsoleW
LeaveCriticalSection
GetConsoleMode
GetACP
FindResourceW
GetCurrentProcessId
RaiseException
ReleaseActCtx
FreeLibrary
InitializeCriticalSectionAndSpinCount
GetModuleFileNameA
GetModuleHandleW
Sleep
SetHandleCount

user32

DefWindowProcW
SetFocus
SetTimer
PostMessageW
KillTimer
DialogBoxParamW
GetDlgItem
SetWindowLongW
CreateWindowExW
GetActiveWindow
LoadImageW
CallWindowProcW
SendMessageW
GetParent
GetClientRect
GetMessagePos
MoveWindow
GetWindowLongW
CharNextW
DestroyWindow
InvalidateRect
TranslateAcceleratorW
ScreenToClient
EnumWindowStationsA
SetDlgItemTextW
CheckMenuItem

gdi32

SelectObject
CreateCompatibleDC
LineTo
SetBrushOrgEx
SetBkMode
SetTextColor
GetObjectW
PatBlt
BitBlt
GetTextExtentPoint32W
CreateFontIndirectW
CreatePatternBrush
ExtTextOutW
CreateCompatibleBitmap
GetDeviceCaps
StretchBlt
SetBkColor
GetTextMetricsW
CreateBitmap
DeleteDC
TextOutW
ExtCreatePen
MoveToEx
SetStretchBltMode
CreateSolidBrush
GetTextExtentPointW
DeleteObject

ole32

CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoInitialize
ReleaseStgMedium
CoCreateInstance
CreateILockBytesOnHGlobal
OleSetContainedObject
OleCreateStaticFromData
StgCreateDocfileOnILockBytes
OleDuplicateData
CoTaskMemAlloc

Sections

.text
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c741f92cdadc0a9cc8acb68f42bc9656

Headers

File Characteristics

Imports

msimg32

kernel32

user32

gdi32

ole32

Sections

.text Size: 191KB - Virtual size: 190KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 128KB - Virtual size: 127KB

.edata Size: 5KB - Virtual size: 72KB

.text
Size: 191KB - Virtual size: 190KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 128KB - Virtual size: 127KB

.edata
Size: 5KB - Virtual size: 72KB