61813920146dbbbbc570d9b5953b326641d3e762368798e0d8be7c25f5bbd95b

Sharing

Copy URL Twitter E-mail

General

Target

61813920146dbbbbc570d9b5953b326641d3e762368798e0d8be7c25f5bbd95b
Size

874KB
MD5

082860924f2ae02da5d1a585a2ae39d6
SHA1

18f321787bb3d17097ca9b0ad018ea9a854c7afe
SHA256

61813920146dbbbbc570d9b5953b326641d3e762368798e0d8be7c25f5bbd95b
SHA512

303d1f1a15c8606a253178248852591175a9dc341e0bc965d890165cee4f8310c5c62cf186edecae04c254ad1849b197523e3a94761350cad5e5145eed1d2040
SSDEEP

24576:4m9LBF+6zbE0jdtAlMJnEbO27MePm+9q9r6p/:4m9LBF+SKMJ84ePm+Q9S

Score

N/A

Malware Config

Signatures

Files

61813920146dbbbbc570d9b5953b326641d3e762368798e0d8be7c25f5bbd95b
.exe windows x86

90f556f283e437da7fcbb97cb0812f26

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
IsValidCodePage
GlobalFindAtomA
GetTickCount
lstrcmpiW
GetEnvironmentStrings
WriteConsoleA
GetSystemInfo
FreeEnvironmentStringsW
LoadLibraryW
GetTempFileNameW
QueryPerformanceFrequency
GetFileType
FreeEnvironmentStringsA
DeleteFileA
WaitForSingleObject
GetLocalTime
GetShortPathNameA
GetFileSize
GetEnvironmentVariableW
SetLastError
GetModuleHandleW
CompareStringW
GetProcAddress
GetEnvironmentVariableA
GetSystemDefaultLCID
GetLastError
MulDiv
GetFileAttributesA
CompareFileTime
GetSystemDirectoryW
CreateFileA
IsDebuggerPresent

gdi32

GetStockObject
CreateDIBitmap
GetTextColor
SetViewportExtEx
SelectPalette
GetClipBox
GetTextExtentPoint32A
Rectangle

user32

SetForegroundWindow
SetTimer
GetTopWindow
PostMessageA
CallWindowProcA
OpenClipboard
IsRectEmpty
GetMessagePos
GetMessageTime
BringWindowToTop
DrawIcon
GetScrollInfo
IsDlgButtonChecked
GetNextDlgTabItem
GetDC
TrackPopupMenu
SetPropW
GetSubMenu
SendMessageW
SetPropA
LoadCursorW
FindWindowA
SetCursor

advapi32

ReportEventW
RegCreateKeyExA
RegQueryValueExA
RegQueryInfoKeyW
GetLengthSid
RegOpenKeyA
CryptAcquireContextW
RegCloseKey
RegOpenKeyExW
AllocateAndInitializeSid
RegEnumKeyW

msvcrt

_wtol
??3@YAXPAX@Z
__setusermatherr
?what@exception@@UBEPBDXZ
??1exception@@UAE@XZ
wcsrchr
_amsg_exit
??1type_info@@UAE@XZ
__getmainargs
exit
__p__fmode
_purecall
__set_app_type
__p__commode

ole32

OleUninitialize
CreateStreamOnHGlobal
CLSIDFromProgID

Sections

.text
Size: 381KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 191KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90f556f283e437da7fcbb97cb0812f26

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

msvcrt

ole32

Sections

.text Size: 381KB - Virtual size: 380KB

.rdata Size: 105KB - Virtual size: 105KB

.data Size: 191KB - Virtual size: 1.7MB

.rsrc Size: 194KB - Virtual size: 194KB

.reloc Size: 1024B - Virtual size: 948B

.text
Size: 381KB - Virtual size: 380KB

.rdata
Size: 105KB - Virtual size: 105KB

.data
Size: 191KB - Virtual size: 1.7MB

.rsrc
Size: 194KB - Virtual size: 194KB

.reloc
Size: 1024B - Virtual size: 948B