abcc0515406a92d75abe375e9d87a127fd66bda9c08d7be013ce42e352573f5b

Sharing

Copy URL Twitter E-mail

General

Target

abcc0515406a92d75abe375e9d87a127fd66bda9c08d7be013ce42e352573f5b
Size

104KB
MD5

a7a9c478f08f032a707f1546a5094ff5
SHA1

7729456bd46207fefbade323b86cb8838e7cea88
SHA256

abcc0515406a92d75abe375e9d87a127fd66bda9c08d7be013ce42e352573f5b
SHA512

e9aafd9f860cdd935c89d62c9df1308f43931b4c83b7e7c6cf1227a99768ce44397657caeab2b18980160de294610d181cdad0c28d318dd33faa0f2e2ba95c08
SSDEEP

1536:0dB4F727sbf3cqpgBX4wYeinoQRS96B8Tn4B4F727sbfG:04t27sbftpgGwRiLRw28W4t27sbe

Score

N/A

Malware Config

Signatures

Files

abcc0515406a92d75abe375e9d87a127fd66bda9c08d7be013ce42e352573f5b
.exe windows x86

380323d48c3ae5d1f17a433ed628efa7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
DeleteDC
DeleteObject
GetDIBits
GetDeviceCaps
SelectObject

winmm

ord2
mciSendCommandA

advapi32

AdjustTokenPrivileges
CloseServiceHandle
ControlService
DeleteService
GetUserNameA
InitializeSecurityDescriptor
LookupPrivilegeValueA
OpenProcessToken
OpenSCManagerA
OpenServiceA
RegCloseKey
RegCreateKeyA
RegEnumKeyExA
RegEnumValueA
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegSetValueExA
RegisterServiceCtrlHandlerA
SetSecurityDescriptorDacl
SetServiceStatus
StartServiceCtrlDispatcherA

user32

CharUpperBuffA
EnumChildWindows
EnumWindows
ExitWindowsEx
GetClassNameA
GetDesktopWindow
GetForegroundWindow
GetWindowDC
GetWindowLongA
GetWindowRect
GetWindowTextA
GetWindowThreadProcessId
GetWindow
IsIconic
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
IsZoomed
MessageBoxA
ReleaseDC
SendMessageA
SetWindowTextA

kernel32

CloseHandle
CopyFileA
CreateDirectoryA
CreateEventA
CreateFileA
CreateProcessA
CreateThread
DefineDosDeviceA
DeleteCriticalSection
DeleteFileA
DeviceIoControl
DosDateTimeToFileTime
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindNextFileA
FlushFileBuffers
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetComputerNameA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentProcess
GetCurrentThread
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentStrings
GetFileAttributesA
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetLogicalDriveStringsA
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetPriorityClass
GetProcAddress
GetStdHandle
GetSystemDirectoryA
GetTimeZoneInformation
GetVersionExA
GetVersion
GetWindowsDirectoryA
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LocalAlloc
LocalFileTimeToFileTime
LocalFree
MoveFileA
MultiByteToWideChar
OpenEventA
OpenProcess
QueryDosDeviceA
ReadConsoleInputA
ReadFile
RemoveDirectoryA
RtlUnwind
SetComputerNameA
SetConsoleCtrlHandler
SetConsoleMode
SetCurrentDirectoryA
SetEnvironmentVariableA
SetEnvironmentVariableW
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetLastError
SetLocalTime
SetPriorityClass
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteFile
lstrcmpiA

netapi32

Netbios

wsock32

getsockopt
htonl
ntohl
setsockopt
bind
socket
ntohs
getsockname
htons
send
recv
connect
accept
listen
closesocket
WSACleanup
WSAStartup

Sections

AUTO
Size: 61KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 10KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

380323d48c3ae5d1f17a433ed628efa7

Headers

File Characteristics

Imports

gdi32

winmm

advapi32

user32

kernel32

netapi32

wsock32

Sections

AUTO Size: 61KB - Virtual size:

.idata Size: 5KB - Virtual size:

DGROUP Size: 10KB - Virtual size:

.bss Size: 4KB - Virtual size:

.reloc Size: 4KB - Virtual size:

AUTO
Size: 61KB - Virtual size:

.idata
Size: 5KB - Virtual size:

DGROUP
Size: 10KB - Virtual size:

.bss
Size: 4KB - Virtual size:

.reloc
Size: 4KB - Virtual size: