fb49243119bff98a2596911d30ae08e75d0c9ca1a38ef0b561cd114ba3522f93

Sharing

Copy URL Twitter E-mail

General

Target

fb49243119bff98a2596911d30ae08e75d0c9ca1a38ef0b561cd114ba3522f93
Size

215KB
MD5

77f857925b9c894a3a23abd51aa3c216
SHA1

edd03b55a08437b8bf05470f92ab7f4ecf1c3aa2
SHA256

fb49243119bff98a2596911d30ae08e75d0c9ca1a38ef0b561cd114ba3522f93
SHA512

6718614a06869f5258a2175e7ac52f97972dd04e179c0daad7cbaae6a96684a80132397a3f25908f0c7ea551cf29c32226db1d502050f5e42e5ebf9638d78646
SSDEEP

6144:eryy3jAjEFxz1qAG8cFG7Gw3YbpXBNk3Sa057ll:eGyTAjE7z1qA9azbxg3Zol

Score

N/A

Malware Config

Signatures

Files

fb49243119bff98a2596911d30ae08e75d0c9ca1a38ef0b561cd114ba3522f93
.exe windows x86

49174c3982e9be83eece0a462eb8fbc9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
GetProcessHeap
GetStartupInfoW
ReadFile
GetStdHandle
CreatePipe
SetFilePointer
CreateFileW
ReadFileEx
CreateProcessW
GetModuleHandleW
lstrcpynW
lstrcmpA
SetHandleInformation
TerminateProcess
LocalAlloc
FormatMessageW
LocalSize
LocalFree
GetExitCodeProcess
GetModuleFileNameW
InterlockedDecrement
OutputDebugStringW
GetComputerNameW
WideCharToMultiByte
TlsGetValue
TlsAlloc
EncodePointer
SetLastError
WriteConsoleW
FlushFileBuffers
CreateThread
GetConsoleMode
GetConsoleCP
DecodePointer
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
FindClose
HeapAlloc
RaiseException
HeapReAlloc
CloseHandle
GlobalFree
GlobalAlloc
Sleep
ReleaseMutex
WaitForSingleObject
CreateMutexW
LCMapStringW
RtlUnwind
InitializeSListHead
GetStringTypeW
GetLastError
MultiByteToWideChar
HeapSize
InitializeCriticalSectionAndSpinCount
HeapFree
SetStdHandle
WinExec
SetFilePointerEx
lstrlenW
GetFileType
GetACP
WriteFile
GetModuleFileNameA
GetModuleHandleExW
ExitProcess
LoadLibraryExW
FreeLibrary
TlsFree
EnterCriticalSection
LeaveCriticalSection
CreateEventW
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
IsProcessorFeaturePresent
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
TlsSetValue

user32

SetForegroundWindow
SetDlgItemInt
AppendMenuW
GetDlgItem
SetFocus
LoadImageW
PostQuitMessage
EnableWindow
GetWindowTextW
DialogBoxParamW
SendDlgItemMessageW
wsprintfW
LoadIconW
GetWindowTextLengthW
GetSystemMenu
PostMessageW
DestroyWindow
MessageBoxW
SendMessageW
EndDialog
SetWindowTextW
ShowWindow
SetDlgItemTextW
GetDlgItemTextW

gdi32

GetObjectW
CreateFontIndirectW

advapi32

RegCloseKey
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetFolderPathW
SHCreateDirectoryExW
Shell_NotifyIconW

ole32

CoCreateInstance
CoInitializeSecurity

oleaut32

VariantClear
VariantInit
SysAllocString
SysFreeString

iphlpapi

GetAdaptersInfo
GetPerAdapterInfo
GetAdaptersAddresses

comctl32

InitCommonControlsEx

shlwapi

PathRemoveFileSpecW

ws2_32

WSACleanup
closesocket
WSAStartup
sendto
htons
socket
inet_addr

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49174c3982e9be83eece0a462eb8fbc9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

iphlpapi

comctl32

shlwapi

ws2_32

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 2KB - Virtual size: 5KB

.rsrc Size: 71KB - Virtual size: 70KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 2KB - Virtual size: 5KB

.rsrc
Size: 71KB - Virtual size: 70KB

.reloc
Size: 6KB - Virtual size: 5KB