9bac8e1e755f20031d9b19e24f6c76eb50aaf8978fefa06713849b76c9217a06

Sharing

Copy URL

Twitter E-mail

General

Target

9bac8e1e755f20031d9b19e24f6c76eb50aaf8978fefa06713849b76c9217a06
Size

289KB
MD5

0d1bd79f464e59961c35f6d7088c8436
SHA1

d23248d708ae44c91002572f090108e3c66e7487
SHA256

9bac8e1e755f20031d9b19e24f6c76eb50aaf8978fefa06713849b76c9217a06
SHA512

0dcf6d1dd2363c34aea81cd556ed63065aad982c9a27ff9983c277cbffc547900fb4127c4c436b70197d26b745528b9afbea7ee3b3179d9d65988a6cd0007eb2
SSDEEP

6144:5Ga2IKa1hZPTJ0rLTvBKVKZ3QrLA5Qan8:4i1z2rLbBhQfMf8

Score

N/A

Malware Config

Signatures

Files

9bac8e1e755f20031d9b19e24f6c76eb50aaf8978fefa06713849b76c9217a06
.exe windows x86

e3046f405a5240ce94c63170f709cbe1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
EnumSystemLocalesA
GetCurrentDirectoryW
LeaveCriticalSection
SetFilePointer
FileTimeToLocalFileTime
OpenEventW
SetEndOfFile
SetEnvironmentVariableA
GetVersionExA
GetExitCodeProcess
GetDateFormatA
InterlockedExchange
GetConsoleOutputCP
HeapFree
DeleteCriticalSection
DeleteFileW
FindFirstFileW
GlobalLock
GetStartupInfoA
GetLocaleInfoA
GetStringTypeA
ReadFile
GetModuleFileNameW
GetCommandLineA
SetLastError
GetACP
GetSystemTimeAsFileTime
CompareStringW
InterlockedDecrement
GetTempPathW
IsValidCodePage
MulDiv
LocalFree
GetCPInfo
GlobalSize
FindClose
lstrcpynW
VirtualAllocEx
GetProcAddress
LoadLibraryA
LCMapStringW
LCMapStringA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
HeapSize
VirtualQuery
RtlUnwind
IsBadWritePtr
VirtualAlloc
HeapAlloc
FlushFileBuffers
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
WriteFile
GetCurrentProcess
TerminateProcess
ExitProcess
GetLastError
GetModuleHandleA
lstrlenW
WaitForSingleObject
GetDriveTypeA
GetSystemInfo
CloseHandle
QueryPerformanceCounter
CreateFileW
GetStdHandle
WriteConsoleW
VirtualProtect
lstrcmpiW
GetProcessHeap
GetDateFormatW
GetCurrentDirectoryA
HeapReAlloc
GetOEMCP
SetStdHandle
FindResourceW
MultiByteToWideChar
GetStringTypeW
GetVersionExW
FileTimeToSystemTime
lstrcmpW
GlobalUnlock
FormatMessageW
CreateMutexW
VirtualFree
GlobalFree
GetModuleFileNameA
GetTimeZoneInformation
CreateEventW
UnhandledExceptionFilter
TlsFree
CreateFileA
SetUnhandledExceptionFilter
lstrcatW

user32

GetMenuItemCount
CallWindowProcA
GetMenuItemID
PtInRect
OpenClipboard
DrawEdge
CreateDialogIndirectParamW
SetForegroundWindow
CreateCursor
GetMenuStringW
GetWindowRect
IsChild
CreateCaret
GetSystemMetrics
GetMenuState
FrameRect
DialogBoxParamW
DrawMenuBar
DestroyCaret
MapWindowPoints
IsIconic
FillRect
ToAscii
UpdateWindow
SetParent
TrackPopupMenu
EnableMenuItem
GetDC
SetScrollPos
GetMonitorInfoW
wsprintfW
AppendMenuW
DispatchMessageW
RealChildWindowFromPoint
GetSubMenu
ModifyMenuW
ReleaseCapture
DestroyWindow
RedrawWindow
GetKeyState
GetKeyboardState
LoadImageW
BeginDeferWindowPos
InsertMenuW
LoadBitmapW
CheckMenuItem
DrawFrameControl
SetFocus
ShowCaret
TranslateMessage
WindowFromPoint
GetFocus
SendDlgItemMessageW
GetClassNameW
CreateMenu
EndDeferWindowPos
LoadMenuW
GetActiveWindow
GetSysColor
SetCursor
ShowScrollBar
SetDlgItemTextW
RegisterClassExW
DrawTextExW
InflateRect
DestroyIcon

gdi32

DPtoLP
Rectangle
SetTextColor
SetBrushOrgEx
SetROP2
CreatePatternBrush
GetDeviceCaps
SetBkColor
CreatePen
CreateSolidBrush
CreateFontW
GetROP2
EndDoc
CreateCompatibleDC
SelectObject
CreateBitmap
GetPixel
ExtTextOutW
SaveDC
MoveToEx
GetTextMetricsW
DeleteObject
SetTextAlign
CreateHatchBrush
StartPage
GetObjectW
DeleteDC
GetStockObject
GetTextExtentPoint32W
SetBkMode
SetWindowOrgEx
BitBlt
CreateFontIndirectW
RemoveFontResourceW

comdlg32

ChooseFontA
GetSaveFileNameA
ChooseColorW
GetFileTitleW
GetFileTitleA
PageSetupDlgW
GetSaveFileNameW
ChooseFontW
PrintDlgA
GetOpenFileNameW
FindTextW
PrintDlgW
ChooseColorA
PageSetupDlgA
ReplaceTextA
ReplaceTextW
FindTextA
GetOpenFileNameA

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zoitxld
Size: - Virtual size: 72KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 194KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e3046f405a5240ce94c63170f709cbe1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 51KB - Virtual size: 111KB

.rsrc Size: 4KB - Virtual size: 32KB

zoitxld Size: - Virtual size: 72KB

.text Size: 194KB - Virtual size: 196KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 51KB - Virtual size: 111KB

.rsrc
Size: 4KB - Virtual size: 32KB

zoitxld
Size: - Virtual size: 72KB

.text
Size: 194KB - Virtual size: 196KB