89830f4bfe4151c5fcc08f600a05082f8795ac5dca37ee0570f3031b9f7a836a

Sharing

Copy URL Twitter E-mail

General

Target

89830f4bfe4151c5fcc08f600a05082f8795ac5dca37ee0570f3031b9f7a836a
Size

348KB
MD5

0f1ee8c9946710b708eb73b134e7ea95
SHA1

a229cc8f0e66a05aab8b427fb55d1ceeeb5330dc
SHA256

89830f4bfe4151c5fcc08f600a05082f8795ac5dca37ee0570f3031b9f7a836a
SHA512

71a7123b9e9483384ea817319baaafd2cdf170d6d9565026a0a1b0556be1657daba037f85a0fd0ba8164db44cf61a5afd19d2bac000c364b380d1955b46277c6
SSDEEP

6144:oG1hHxnOSoC+VJPHhTqaezIVC63eKLjypV4dPsVoyb8DRVEnMVq:o45OSoC+fJWVIVfZdPygVVD

Score

N/A

Malware Config

Signatures

Files

89830f4bfe4151c5fcc08f600a05082f8795ac5dca37ee0570f3031b9f7a836a
.exe windows x86

186b9f91412efa063f86e209c24c5b13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
ExitProcess
LeaveCriticalSection
SetThreadContext
GetTickCount
GetCPInfo
ReadFile
RtlUnwind
OpenFile
GetStringTypeA
CreateDirectoryExA
TerminateProcess
GetModuleHandleA
EnumResourceLanguagesA
DeleteCriticalSection
MultiByteToWideChar
TlsSetValue
InterlockedIncrement
HeapDestroy
HeapAlloc
GetThreadContext
UnmapViewOfFile
SetLastError
GetEnvironmentStrings
GetLogicalDriveStringsA
UnhandledExceptionFilter
GetStdHandle
GetCurrentThread
LCMapStringW
InterlockedDecrement
HeapFree
GetProfileIntW
LoadLibraryA
GetSystemTime
SystemTimeToTzSpecificLocalTime
SetEnvironmentVariableA
LCMapStringA
InitializeCriticalSection
GetLogicalDrives
GetCurrentProcess
GetExitCodeThread
QueryPerformanceCounter
TlsGetValue
GetCurrentThreadId
VirtualFree
HeapReAlloc
OpenMutexA
WriteFile
FreeEnvironmentStringsA
GetTimeZoneInformation
GetFileAttributesExW
TlsAlloc
EnterCriticalSection
GetProcAddress
GetLocalTime
CloseHandle
VirtualQuery
GlobalGetAtomNameA
GetStartupInfoW
TlsFree
GetVersion
SetStdHandle
GetSystemTimeAsFileTime
IsBadWritePtr
OpenWaitableTimerA
CreateMutexW
CreateMutexA
FlushFileBuffers
GetTempPathW
SetComputerNameW
GetStartupInfoA
CompareStringA
GetStringTypeW
GetLastError
GetCommandLineW
CreateSemaphoreA
lstrcmpiA
ConvertDefaultLocale
GetFileType
CreateMailslotA
GetCurrentProcessId
GetModuleFileNameW
SetFilePointer
CompareStringW
GetEnvironmentStringsW
GetModuleFileNameA
FreeEnvironmentStringsW
GetCommandLineA
HeapCreate
SetThreadIdealProcessor
InterlockedExchange
WideCharToMultiByte
TransactNamedPipe
SetHandleCount

comdlg32

GetOpenFileNameA

advapi32

RegDeleteValueA
LookupPrivilegeValueW
DuplicateToken
RegEnumValueW
LookupAccountNameW
RegEnumKeyExW
ReportEventW
LookupAccountNameA
LookupPrivilegeValueA
CryptEnumProvidersW
CryptSetKeyParam

gdi32

GetObjectW
CreatePalette
GetMapMode
GetAspectRatioFilterEx
ScaleWindowExtEx
CreateDCA
SelectObject
DeleteDC
SetDIBColorTable
GetDeviceCaps
FrameRgn

user32

CreateWindowExW
DefWindowProcA
MessageBoxA
GetClipboardSequenceNumber
GetFocus
SetMenuItemBitmaps
DeleteMenu
EnumDisplayMonitors
RegisterClassA
TileChildWindows
RegisterClassW
GetMenuDefaultItem
CheckMenuRadioItem
GetKeyboardType
DdeSetUserHandle
InflateRect
RegisterClipboardFormatA
ShowWindow
ExcludeUpdateRgn
DestroyWindow
CreateDesktopW
RegisterClassExA
DdeConnectList
GetKeyboardLayoutNameA
IsWindowEnabled

shell32

RealShellExecuteW
RealShellExecuteA

comctl32

ImageList_GetIcon
_TrackMouseEvent
ImageList_DragMove
ImageList_AddIcon
ImageList_SetBkColor
ImageList_DrawEx
CreateUpDownControl
InitCommonControlsEx
ImageList_Merge
CreateToolbarEx
ImageList_GetImageCount

Sections

.text
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

186b9f91412efa063f86e209c24c5b13

Headers

File Characteristics

Imports

kernel32

comdlg32

advapi32

gdi32

user32

shell32

comctl32

Sections

.text Size: 116KB - Virtual size: 114KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 96KB - Virtual size: 124KB

.rsrc Size: 68KB - Virtual size: 67KB

.text
Size: 116KB - Virtual size: 114KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 96KB - Virtual size: 124KB

.rsrc
Size: 68KB - Virtual size: 67KB