ab4e79e4b71e2449cc40239000cedfaff9c202eecdd15f19b36a254355669625

Sharing

Copy URL Twitter E-mail

General

Target

ab4e79e4b71e2449cc40239000cedfaff9c202eecdd15f19b36a254355669625
Size

923KB
MD5

61ae21a0c5216f55e4c5fb8f915bd5ca
SHA1

a4971f0e61f490ce1ac88169d0dbdbc1fcfdbb3c
SHA256

ab4e79e4b71e2449cc40239000cedfaff9c202eecdd15f19b36a254355669625
SHA512

563193e1856afe5bc11cde6b86b248048bb7debc65ab96cd32efd6d097497e7a1a284d205e69ae67850bb9b4d2f208156fccbb2078e195a97033eb70b9a42bc7
SSDEEP

24576:JnEsR4wjlLxWdszkNaIxkaoy3Xaj9omPVuf:NRJjd0srIlexVu

Score

N/A

Malware Config

Signatures

Files

ab4e79e4b71e2449cc40239000cedfaff9c202eecdd15f19b36a254355669625
.exe windows x86

9fbd1ef681f380b156021c16dd89439e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFileW
DragAcceptFiles
CommandLineToArgvW
ExtractIconExW
SHFileOperationW
SHCreateDirectoryExW
SHGetSpecialFolderPathW
ShellExecuteW

kernel32

GetSystemTime
GetSystemTimeAsFileTime
GetLocalTime
GetSystemInfo
FileTimeToLocalFileTime
FormatMessageW
LoadLibraryExW
GetModuleFileNameW
CreateProcessW
GetCommandLineW
OutputDebugStringW
GetPrivateProfileStructW
GetFileAttributesW
FindNextChangeNotification
CreateTimerQueue
QueryPerformanceCounter
MultiByteToWideChar
GetLocaleInfoW
CloseHandle
GetConsoleWindow
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
LoadLibraryA
HeapReAlloc
GetOEMCP
GetACP
GetCPInfo
WriteFile
SetFileShortNameW
WaitForSingleObject
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetLastError
GetCurrentThreadId
GetCurrentProcess
HeapFree
HeapAlloc
HeapDestroy
VirtualAlloc
GetProcAddress
RtlUnwind
GetThreadLocale
VirtualFree
HeapCreate
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetEnvironmentVariableA
GetVersionExA

user32

SetMenuDefaultItem
EnableMenuItem
GetAncestor
DestroyWindow
DdeImpersonateClient
GetCursor
CreateCaret
DeferWindowPos
CreateIconIndirect
SetWindowTextW

secur32

FreeContextBuffer
FreeCredentialsHandle
GetUserNameExW

crypt32

CertEnumCertificatesInStore
CertVerifyCertificateChainPolicy
CertFreeCertificateChain
CertGetCertificateChain
CertGetNameStringW
CertNameToStrW
CryptExportPKCS8
CryptAcquireCertificatePrivateKey
CertFindExtension
CertVerifyTimeValidity
CertGetEnhancedKeyUsage
CertAddStoreToCollection
CertAddCertificateContextToStore
CertAddEncodedCertificateToStore
CertFreeCertificateContext
CertCreateCertificateContext
CertOpenStore
CryptMsgUpdate
CryptMsgOpenToDecode
CryptEnumOIDInfo
CryptDecodeObject
CryptDecodeObjectEx
CryptEncodeObject
CryptEncodeObjectEx

uxtheme

CloseThemeData

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 297KB - Virtual size: 6.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hun0
Size: 274KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bnh6
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ok6i
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9fbd1ef681f380b156021c16dd89439e

Headers

File Characteristics

Imports

shell32

kernel32

user32

secur32

crypt32

uxtheme

Sections

.text Size: 42KB - Virtual size: 42KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 297KB - Virtual size: 6.9MB

.hun0 Size: 274KB - Virtual size: 273KB

.bnh6 Size: 161KB - Virtual size: 161KB

.ok6i Size: 120KB - Virtual size: 120KB

.rsrc Size: 21KB - Virtual size: 21KB

.text
Size: 42KB - Virtual size: 42KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 297KB - Virtual size: 6.9MB

.hun0
Size: 274KB - Virtual size: 273KB

.bnh6
Size: 161KB - Virtual size: 161KB

.ok6i
Size: 120KB - Virtual size: 120KB

.rsrc
Size: 21KB - Virtual size: 21KB