743b92bb88d88903abbb618c43e0cc0933be05481bd5db2a21086fdf2a1f6cf4

Sharing

Copy URL

Twitter E-mail

General

Target

743b92bb88d88903abbb618c43e0cc0933be05481bd5db2a21086fdf2a1f6cf4
Size

332KB
MD5

0f4d41d91eee4b97750d44877cbb3131
SHA1

68964e96016343de8e70211a637ba59800b5a965
SHA256

743b92bb88d88903abbb618c43e0cc0933be05481bd5db2a21086fdf2a1f6cf4
SHA512

3d7a4f14d9c0d1a2dfa47faa89a3fff7b732627529375506c95f4dd58b7b88af10795a141d1c5df628c058715aaad5b0e4ec14cf137a137c3410da53070b8e88
SSDEEP

6144:+5drglwoyKxdOCKpwbpfg/WNZMmEVE6efO6lZ/6h2iAZrn26w:+5VguOdQkhg/GZMmCeb/yhCrn2

Score

N/A

Malware Config

Signatures

Files

743b92bb88d88903abbb618c43e0cc0933be05481bd5db2a21086fdf2a1f6cf4
.exe windows x86

b3b1d2c55f19762b55d85d115eef4e56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

VkKeyScanW
OpenDesktopA
IsChild
MapVirtualKeyExW
RegisterClassA
DrawTextW
ShowWindow
UnregisterDeviceNotification
IsCharAlphaA
EnableWindow
OpenDesktopW
GetTopWindow
DestroyWindow
SetParent
DdeReconnect
CharLowerA
SetThreadDesktop
RealChildWindowFromPoint
SetSysColors
GetClassInfoExA
PostQuitMessage
RemoveMenu
SetPropA
DefWindowProcW
GetGuiResources
GetSysColorBrush
CharLowerW
GetScrollPos
CallMsgFilter
MessageBoxW
GetWindowLongA
GetQueueStatus
ChildWindowFromPointEx
FlashWindow
SetCursorPos
DefMDIChildProcA
SetCaretBlinkTime
RegisterClassExA
wvsprintfA
GetCaretBlinkTime
WinHelpW
EnumChildWindows
DdeUninitialize
RegisterDeviceNotificationW
GetClipboardFormatNameW
CreateWindowExW

advapi32

CryptDestroyKey
DuplicateTokenEx
CryptGetDefaultProviderW
DuplicateToken
RegOpenKeyW
RegCreateKeyA
InitiateSystemShutdownA
RegQueryMultipleValuesW
CryptDecrypt
RegCreateKeyW
CryptAcquireContextW
CryptGetHashParam

comctl32

CreateStatusWindowA
ImageList_BeginDrag
DrawInsert
InitCommonControlsEx
ImageList_SetFilter
DrawStatusTextW

kernel32

SetFilePointer
SetLastError
GetConsoleTitleW
GetModuleFileNameA
VirtualFree
WideCharToMultiByte
SetThreadLocale
GetEnvironmentStrings
GetACP
CreateMutexA
GlobalDeleteAtom
GetModuleFileNameW
LCMapStringW
OpenMutexA
GetProcAddress
RemoveDirectoryW
SetThreadContext
GlobalFix
HeapReAlloc
FreeEnvironmentStringsW
FileTimeToLocalFileTime
GetPrivateProfileSectionNamesW
SetThreadPriority
ContinueDebugEvent
HeapAlloc
CreateNamedPipeA
GetPrivateProfileSectionNamesA
GetTempPathA
GetLocalTime
GetModuleHandleA
GetLastError
WriteFile
CreateRemoteThread
HeapLock
SetEnvironmentVariableA
GetCPInfo
CloseHandle
AddAtomA
EnumCalendarInfoW
GetDateFormatA
CreateFileMappingA
MultiByteToWideChar
TlsSetValue
GetTimeFormatA
GetCommandLineW
QueryPerformanceCounter
RtlMoveMemory
GetStartupInfoA
SetHandleCount
GetLocaleInfoW
GetVersionExW
HeapDestroy
TlsAlloc
LeaveCriticalSection
FreeEnvironmentStringsA
RtlFillMemory
GetMailslotInfo
VirtualQuery
WritePrivateProfileStringW
GetStringTypeW
GetProfileStringW
EnterCriticalSection
TlsGetValue
GetSystemInfo
GetFullPathNameW
EnumResourceTypesW
GetTickCount
LocalFileTimeToFileTime
GetCurrentThread
HeapSize
RtlUnwind
TlsFree
GetLogicalDriveStringsA
SetConsoleOutputCP
UnhandledExceptionFilter
EnumSystemCodePagesA
GetFileType
LoadLibraryA
LCMapStringA
SetUnhandledExceptionFilter
ResetEvent
GetCurrentProcess
IsBadWritePtr
GetWindowsDirectoryW
ExitProcess
GetSystemDefaultLCID
ExpandEnvironmentStringsA
ReadFile
SetFileTime
VirtualProtect
lstrlen
IsValidCodePage
CompareStringA
VirtualFreeEx
GetDiskFreeSpaceExA
DeleteCriticalSection
HeapFree
TerminateProcess
InitializeCriticalSection
GetCurrentProcessId
GetTimeZoneInformation
GetCurrentThreadId
EnumSystemLocalesA
FileTimeToDosDateTime
FlushViewOfFile
IsValidLocale
SystemTimeToFileTime
SetStdHandle
GetSystemTimeAsFileTime
FlushFileBuffers
GetStringTypeA
GetStartupInfoW
EnumResourceNamesW
CommConfigDialogW
InterlockedExchange
HeapCreate
WriteConsoleOutputA
SetConsoleCursorPosition
GetLocaleInfoA
GetNamedPipeHandleStateW
GetStdHandle
GetEnvironmentStringsW
GetUserDefaultLCID
CompareStringW
GetCommandLineA
IsDebuggerPresent
CreateWaitableTimerW
GetSystemDirectoryW
UnlockFileEx
CreatePipe
MapViewOfFileEx
MoveFileExW
GetOEMCP
VirtualAlloc
GlobalFree
CreateEventA
GlobalFindAtomW
GetVersionExA

Sections

.text
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b3b1d2c55f19762b55d85d115eef4e56

Headers

File Characteristics

Imports

user32

advapi32

comctl32

kernel32

Sections

.text Size: 140KB - Virtual size: 137KB

.rdata Size: 72KB - Virtual size: 68KB

.data Size: 96KB - Virtual size: 116KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 140KB - Virtual size: 137KB

.rdata
Size: 72KB - Virtual size: 68KB

.data
Size: 96KB - Virtual size: 116KB

.rsrc
Size: 20KB - Virtual size: 17KB