4fa1b0932473ca246200d0ba01a8dea7ca9471d16af12172c75ef9ac5e3c9c60

Sharing

Copy URL

Twitter E-mail

General

Target

4fa1b0932473ca246200d0ba01a8dea7ca9471d16af12172c75ef9ac5e3c9c60
Size

356KB
MD5

087e1d21f974d4f70548bb35627a8d4d
SHA1

907b3abd0f71fe9ccc29ba9c0b24233d8ce866ef
SHA256

4fa1b0932473ca246200d0ba01a8dea7ca9471d16af12172c75ef9ac5e3c9c60
SHA512

e8bfc4d4678e404fd6828777f94ae438916dd424434c9b82497a30a5f040c49ac0ffe77c1a5084f1e2098c7203b45f6ae037e003523de00ca5d3062ab380e37c
SSDEEP

6144:LIlkNeSscPV4444Vw2BiMeWvRIH2WzNB327NgLtl9cL7kdyC2hlQ:LIlkNeShPVj44VwYiMeWvRIH2Ms7sU72

Score

N/A

Malware Config

Signatures

Files

4fa1b0932473ca246200d0ba01a8dea7ca9471d16af12172c75ef9ac5e3c9c60
.exe windows x86

e66f7b7403af8d90fe518bc8b195632a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
ResizePalette
GetBitmapBits
SelectObject
FillRgn
ExcludeClipRect
PlayEnhMetaFile
GetEnhMetaFileHeader
EndDoc
GetKerningPairsW
SetICMProfileW
GetDIBits
CreateDCA
PolyDraw
GetObjectW
DeleteObject
FillPath
GetCharacterPlacementW
DeleteDC

kernel32

GetLocaleInfoW
GetStartupInfoA
WriteConsoleA
GetProcessHeap
GetProcAddress
CreateSemaphoreW
GlobalAddAtomA
FreeLibrary
GetVersionExA
FreeEnvironmentStringsA
LoadResource
WideCharToMultiByte
lstrcpynW
Sleep
SetStdHandle
GetEnvironmentStringsW
TlsFree
TlsAlloc
SetEnvironmentVariableA
HeapCreate
ExitProcess
GetCurrentProcessId
EnumSystemLocalesA
HeapFree
GetCommandLineA
SetConsoleCtrlHandler
GetCalendarInfoA
GetTimeZoneInformation
CompareStringA
GetDateFormatA
TlsGetValue
IsDebuggerPresent
GetTimeFormatA
GetCurrentProcess
GetStringTypeA
GetEnvironmentStringsA
DeleteCriticalSection
IsValidLocale
HeapAlloc
GetModuleHandleA
WriteProfileStringW
HeapReAlloc
LCMapStringW
WriteFile
DebugActiveProcess
RemoveDirectoryW
MoveFileExA
CommConfigDialogW
UnhandledExceptionFilter
QueryPerformanceCounter
WriteConsoleW
MapViewOfFileEx
GetACP
LocalShrink
RtlUnwind
FindFirstFileA
GetStdHandle
HeapSize
CreateFileA
SetHandleCount
GetSystemTimeAsFileTime
LeaveCriticalSection
GetFileAttributesExA
DosDateTimeToFileTime
CreateMutexA
GetVolumeInformationW
LoadLibraryA
IsValidCodePage
GetConsoleCP
VirtualAlloc
GetConsoleMode
VirtualQuery
GetTickCount
InitializeCriticalSection
TerminateProcess
SetUnhandledExceptionFilter
TlsSetValue
ReadFile
FreeEnvironmentStringsW
CompareStringW
GetEnvironmentStrings
SetFilePointer
VirtualFree
InterlockedIncrement
GetTempPathA
CreateRemoteThread
EnumCalendarInfoExA
GetLastError
GetOEMCP
OpenMutexA
MultiByteToWideChar
HeapDestroy
SetLastError
GetFileType
GetDriveTypeA
LCMapStringA
CloseHandle
ReadFileEx
GetStringTypeW
EnterCriticalSection
InterlockedDecrement
GetLocaleInfoA
GetUserDefaultLCID
FlushFileBuffers
GetCPInfo
GetModuleFileNameA
GetConsoleOutputCP
InterlockedExchange
GetCurrentThreadId
GetCurrentThread

advapi32

CryptSetProviderA
CryptSetProviderW
CryptDeriveKey
RegQueryInfoKeyA
CryptVerifySignatureW
RegQueryValueExW
LookupSecurityDescriptorPartsW
RegQueryValueExA
CryptVerifySignatureA
RegSetValueA
LookupPrivilegeValueA
CryptGetKeyParam
CryptGenKey
RegConnectRegistryW
CryptAcquireContextA
RegRestoreKeyA
RegOpenKeyA
RegQueryValueA

comdlg32

ChooseFontW
LoadAlterBitmap
GetSaveFileNameW
GetFileTitleA

shell32

SHGetDataFromIDListA
CheckEscapesW

comctl32

CreatePropertySheetPageW
InitCommonControlsEx
ImageList_LoadImageW
ImageList_GetFlags
CreatePropertySheetPageA

user32

CreateMenu
CreateIconIndirect
SetScrollInfo
ChangeMenuA
CopyAcceleratorTableW
GrayStringW
DefWindowProcA
OpenClipboard
ShowWindow
GetWindowThreadProcessId
OpenInputDesktop
SetMenuItemInfoW
EnumDesktopWindows
GetScrollInfo
DlgDirSelectComboBoxExA
SetCapture
ReuseDDElParam
EnumPropsExA
TabbedTextOutA
SwapMouseButton
MessageBoxIndirectA
RegisterClassExA
RemoveMenu
GetWindowRgn
GetMenuStringA
TranslateMessage
GetClassInfoA
GetGUIThreadInfo
ShowOwnedPopups
DdeUnaccessData
CreateMDIWindowW
GetClassInfoW
CopyAcceleratorTableA
DestroyWindow
SetActiveWindow
GetMenuItemRect
DrawTextExA
UnregisterHotKey
SwitchDesktop
DrawStateW
LookupIconIdFromDirectoryEx
IsDialogMessage
DrawTextA
ToUnicodeEx
NotifyWinEvent
CreateDialogIndirectParamW
GetAltTabInfo
DdeConnect
OemKeyScan
DdeImpersonateClient
SetLastErrorEx
GetUserObjectInformationA
DestroyCursor
CreateWindowExW
ModifyMenuA
MessageBoxW
GetWindowTextLengthA
PostMessageW
CloseClipboard
SetMenu
DdeConnectList
CharLowerW
EnumPropsExW
RegisterClassExW
SetDebugErrorLevel
IsCharLowerW
DialogBoxIndirectParamA
GetCapture
GetScrollBarInfo
RegisterClassA
OpenDesktopW
ImpersonateDdeClientWindow

Sections

.text
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e66f7b7403af8d90fe518bc8b195632a

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

comdlg32

shell32

comctl32

user32

Sections

.text Size: 128KB - Virtual size: 125KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 92KB - Virtual size: 99KB

.rsrc Size: 28KB - Virtual size: 24KB

.text
Size: 128KB - Virtual size: 125KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 92KB - Virtual size: 99KB

.rsrc
Size: 28KB - Virtual size: 24KB