d01a810ad3e11945f20625cd5c5eb9f9929aef613c62b2b9e6aa8346c65168c8

Sharing

Copy URL Twitter E-mail

General

Target

d01a810ad3e11945f20625cd5c5eb9f9929aef613c62b2b9e6aa8346c65168c8
Size

264KB
MD5

0ff20a4e4c78ddbd908050e5cadfce14
SHA1

1be77282d97eaa23cd6ed0e4ff906cf7856ba9cd
SHA256

d01a810ad3e11945f20625cd5c5eb9f9929aef613c62b2b9e6aa8346c65168c8
SHA512

f50f22e98dc3617fbb45ee79b4a694cb21a4b46d359a16554a2fff4c49d2ab83e2f58116d991170fc4f62034af59272942c1292e4693580e5bc8aa6102f56b5c
SSDEEP

6144:NumxVXlAbv/EQFxVfR0cg5o7wm8bS9ihc42jLd7HX:gmxV1wl0qwBu9ih0d7H

Score

N/A

Malware Config

Signatures

Files

d01a810ad3e11945f20625cd5c5eb9f9929aef613c62b2b9e6aa8346c65168c8
.exe windows x86

fbf983486f0a9df8280a512b4df14f23

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CommConfigDialogA
GetCurrentThreadId
SetFilePointer
CompareStringA
CloseHandle
SetEnvironmentVariableA
TlsSetValue
GetEnvironmentStringsW
HeapAlloc
GetStringTypeW
GetCurrentProcess
HeapDestroy
HeapReAlloc
ReadFile
FlushFileBuffers
DeleteCriticalSection
GetCommandLineW
LoadLibraryA
FoldStringW
GetModuleFileNameW
GetFileType
TerminateProcess
UnhandledExceptionFilter
GetStdHandle
MultiByteToWideChar
InterlockedExchange
WriteFile
CreateMutexA
RemoveDirectoryA
SetLastError
VirtualFree
InterlockedDecrement
FreeEnvironmentStringsA
TlsFree
GetEnvironmentStrings
GetProcAddress
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
VirtualQuery
SetHandleCount
WideCharToMultiByte
GetCPInfo
GetProcAddress
GetSystemTime
LCMapStringW
HeapCreate
OpenMutexA
GetTimeZoneInformation
LCMapStringA
LeaveCriticalSection
HeapFree
GetLastError
GetStartupInfoW
ExitProcess
GetCommandLineA
GetVersion
RtlUnwind
QueryPerformanceCounter
GetCurrentThread
SetStdHandle
GetStartupInfoA
GetCurrentDirectoryW
TlsGetValue
InitializeCriticalSection
EnterCriticalSection
GetLocalTime
InterlockedIncrement
GetModuleHandleA
CompareStringW
IsBadWritePtr
GetCurrentProcessId
GetStringTypeA
GetTickCount
GetModuleFileNameA
TlsAlloc
ReadFileEx
VirtualAlloc

comctl32

ImageList_Read
ImageList_SetBkColor
DestroyPropertySheetPage
ImageList_DragEnter
CreatePropertySheetPageW
CreateToolbar
ImageList_GetImageRect
InitCommonControlsEx
ImageList_LoadImageA
ImageList_AddIcon
ImageList_Duplicate
_TrackMouseEvent
ImageList_AddMasked
DrawInsert
CreateStatusWindowW
ImageList_GetImageInfo
ImageList_DragShowNolock

user32

GetDlgItemTextW
ChangeDisplaySettingsExW
DdeKeepStringHandle
GetKeyboardLayoutNameW
LockWindowUpdate
GetUpdateRect
MessageBeep
TrackMouseEvent
SystemParametersInfoA
ChildWindowFromPointEx
RegisterClassA
SetWindowWord
OpenWindowStationA
wsprintfW
DestroyCaret
SetParent
FreeDDElParam
SendMessageA
IsCharAlphaW
GetKeyboardLayoutNameA
SwitchToThisWindow
GetWindowInfo
EnumDisplayMonitors
SendIMEMessageExA
WaitMessage
SetRect
PackDDElParam
GetShellWindow
IsCharUpperW
CountClipboardFormats
SetCursorPos
RegisterClassExA
GetMenuStringW
CreateDesktopW
GetClipboardData

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 92KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fbf983486f0a9df8280a512b4df14f23

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 68KB - Virtual size: 64KB

.data Size: 92KB - Virtual size: 98KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 68KB - Virtual size: 64KB

.data
Size: 92KB - Virtual size: 98KB

.rsrc
Size: 40KB - Virtual size: 36KB