b0099fa975f64f8004fe636cb961f0fd92ed771d245aa971beae86197d3c39ef

Sharing

Copy URL

Twitter E-mail

General

Target

b0099fa975f64f8004fe636cb961f0fd92ed771d245aa971beae86197d3c39ef
Size

313KB
MD5

04d41b3270fac135197e7d7c9b543030
SHA1

85bcaa617c47ee5273adccb40e578b047a690538
SHA256

b0099fa975f64f8004fe636cb961f0fd92ed771d245aa971beae86197d3c39ef
SHA512

c9dd86816700d25269f868e183f6a99790ba8ffc8a262df0285c8ddb390a03783f343a7e5cc44069c3c0ac31f2f204a43e38cfaaaaa04398097a80c071c905df
SSDEEP

6144:4LQhkKwYhNGEY3onoR3/gzD0kVySRj2QBM0pX4ahOlyaffKtYbxCVf5rtg78:RhwAU/3onoRvgPzRRj0kXji1ffKyUVft

Score

N/A

Malware Config

Signatures

Files

b0099fa975f64f8004fe636cb961f0fd92ed771d245aa971beae86197d3c39ef
.exe windows x86

e7b4a13e51709c5a5ebe3919b740f1e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
SetUnhandledExceptionFilter
EnterCriticalSection
GetProcessHeap
SizeofResource
DeleteCriticalSection
GetProcAddress
SetLastError
HeapDestroy
FlushInstructionCache
GetSystemTimeAsFileTime
lstrcpyW
LoadResource
HeapFree
GetUserDefaultLCID
GetTickCount
lstrlenW
GetEnvironmentStringsA
GetSystemInfo
GetCurrentProcessId
GetCurrentProcess
FormatMessageW
GetLastError
InterlockedDecrement
lstrcmpiW
FindResourceW
HeapAlloc
OutputDebugStringA
LocalFree
VirtualFree
MultiByteToWideChar
InterlockedIncrement
LeaveCriticalSection
FreeLibrary
GetModuleFileNameW
LoadLibraryA
lstrcatW
lstrlenA
RemoveDirectoryA
lstrcpynW

msvcrt

_initterm
??2@YAPAXI@Z
wcscmp
free
malloc
wcscat
_except_handler3
wcslen
??3@YAXPAX@Z
_adjust_fdiv
__CxxFrameHandler
wcsncpy
?terminate@@YAXXZ
swprintf
??1type_info@@UAE@XZ
realloc

user32

GetWindow
SetWindowPos
LoadStringW
GetDlgItemTextW
MessageBoxW
CharNextW
SetFocus
GetWindowLongW
DestroyWindow
DrawTextW
EndDialog
DialogBoxParamW
SetDlgItemTextW
GetSystemMetrics
SystemParametersInfoW
CopyRect
SetWindowLongW
GetClientRect
SendDlgItemMessageW
GetDialogBaseUnits
SetWindowTextW
LoadImageW
GetParent
GetDlgItem
ShowWindow
MapWindowPoints
GetWindowRect
SendMessageW
CreateDialogParamW
EnableWindow

advapi32

RegisterTraceGuidsW
UnregisterTraceGuids
RegEnumKeyExW
RegCreateKeyExW
TraceMessage
RegQueryInfoKeyW
RegDeleteKeyW
GetTraceLoggerHandle
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
GetTraceEnableFlags
RegDeleteValueW
GetTraceEnableLevel
RegSetValueExW

rpcrt4

CStdStubBuffer_IsIIDSupported
CStdStubBuffer_QueryInterface
CStdStubBuffer_Connect
CStdStubBuffer_Disconnect
NdrOleAllocate
IUnknown_Release_Proxy
CStdStubBuffer_Invoke
NdrDllRegisterProxy
IUnknown_QueryInterface_Proxy
NdrOleFree
CStdStubBuffer_AddRef
CStdStubBuffer_DebugServerQueryInterface
NdrDllGetClassObject
NdrDllUnregisterProxy
CStdStubBuffer_CountRefs
NdrCStdStubBuffer_Release
NdrDllCanUnloadNow
IUnknown_AddRef_Proxy

ole32

CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoSetProxyBlanket
CoTaskMemAlloc

untfs

Format
ChkdskEx
Extend
Chkdsk
Recover
FormatEx

shell32

SHGetFolderPathW
ShellExecuteW

gdi32

SetBkMode

Sections

text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7b4a13e51709c5a5ebe3919b740f1e2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

rpcrt4

ole32

untfs

shell32

gdi32

Sections

text Size: 114KB - Virtual size: 114KB

.rdata Size: 173KB - Virtual size: 173KB

.rsrc Size: 30KB - Virtual size: 30KB

text
Size: 114KB - Virtual size: 114KB

.rdata
Size: 173KB - Virtual size: 173KB

.rsrc
Size: 30KB - Virtual size: 30KB