b6e161164388cb9dd00db9f68931d9295acd7bd2a0f39e3f44e2b292c6e2a1f4

Sharing

Copy URL Twitter E-mail

General

Target

b6e161164388cb9dd00db9f68931d9295acd7bd2a0f39e3f44e2b292c6e2a1f4
Size

239KB
MD5

0c2b5b43e16bdc2ae57932167ea4b3ee
SHA1

f84796c9402b061830d244416743838b5124cdf6
SHA256

b6e161164388cb9dd00db9f68931d9295acd7bd2a0f39e3f44e2b292c6e2a1f4
SHA512

ca09f77cb104f5d7c1fb4f01a035e61bc1b6c68f141e7fc31f7ff8df42f565c2a2a6f29aca10999e006eec6603b008f53f1fb80780649800bbc9d73ea29b68b4
SSDEEP

6144:K1N/55na1ir2xEgoXF9NdLC/fGQ1Ff49vOloCttd:KX55a1rx8FsGQ1qE9V

Score

N/A

Malware Config

Signatures

Files

b6e161164388cb9dd00db9f68931d9295acd7bd2a0f39e3f44e2b292c6e2a1f4
.exe windows x86

f76763480801fe7e75f82bc717702417

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
IsBadWritePtr
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement
Sleep
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
CompareStringA
CompareStringW
VirtualAlloc
GetCurrentThread
GetEnvironmentStrings
GetStdHandle
CreateEventA
CreateMutexA
GetEnvironmentStringsW
GetVersionExA
GetCurrentProcessId
HeapFree
VirtualFree
SetEnvironmentVariableA
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetLastError
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
DeleteCriticalSection
GetFileType
SetHandleCount
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA

user32

GetWindowThreadProcessId
ReleaseDC
PostQuitMessage
IsWindowUnicode
GetDlgItemTextA
SendMessageA
GetWindowRect
LoadStringW
GetWindowPlacement
EndDialog
GetDesktopWindow
BeginPaint
EndPaint
GetWindowTextLengthA
InvalidateRect
GetDlgItemInt
LoadStringA
DestroyWindow
GetWindowDC
SetCursor
TranslateMessage
GetDlgItem
SetForegroundWindow
SetTimer
GetDlgItemTextW
GetSystemMetrics
GetClientRect
ShowWindow
SetRectEmpty
GetWindowLongW

gdi32

CreateFontIndirectW
CreatePalette
BitBlt
SetStretchBltMode
GetTextExtentPoint32W
CreateCompatibleDC
SaveDC
DeleteDC
CreateFontIndirectA
Rectangle
SelectPalette
SetMapMode
CreateDIBSection
CreateDIBitmap
MoveToEx
SelectClipRgn
ExtCreatePen
SelectObject
CreateRectRgnIndirect
SetViewportOrgEx
CreatePenIndirect
CreateBitmap
PatBlt
GetDeviceCaps
GetClipBox
SetBkMode
ExtTextOutW
SetTextColor
ExtSelectClipRgn
RealizePalette
GetObjectA
CreateCompatibleBitmap
RestoreDC
ExtTextOutA
GetObjectW
RectVisible
CreateSolidBrush
LineTo
GetStretchBltMode
GetStockObject
SetBkColor
DeleteObject
SetWindowOrgEx
StretchBlt

ole32

RevokeDragDrop
CoRegisterSurrogate
CoCreateGuid
StringFromCLSID
CreateILockBytesOnHGlobal
CLSIDFromProgID
CLSIDFromString
CoDisconnectObject
CoTaskMemAlloc
CoTaskMemFree
StgCreateDocfileOnILockBytes
OleRun
CoInitializeSecurity
CoRevokeClassObject
CreateBindCtx
RegisterDragDrop
CreateStreamOnHGlobal
CoLockObjectExternal
ReleaseStgMedium
CoRegisterMessageFilter
GetRunningObjectTable
CoUninitialize
CoCreateInstance
CoGetClassObject
CoQueryProxyBlanket
CoInitialize
OleFlushClipboard
CoFreeUnusedLibraries
OleUninitialize
OleInitialize

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 159KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f76763480801fe7e75f82bc717702417

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Sections

.text Size: 42KB - Virtual size: 41KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 159KB - Virtual size: 275KB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 42KB - Virtual size: 41KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 159KB - Virtual size: 275KB

.rsrc
Size: 29KB - Virtual size: 28KB