1626de464a39eee3920daa59df6d86023a86c91411e286f15e671802035251a2

Sharing

Copy URL Twitter E-mail

General

Target

1626de464a39eee3920daa59df6d86023a86c91411e286f15e671802035251a2
Size

328KB
MD5

08635ac6fc4c1b6b000e6765b896b336
SHA1

69ee4fec08296acbbdeef127ac1a59dff4b09186
SHA256

1626de464a39eee3920daa59df6d86023a86c91411e286f15e671802035251a2
SHA512

c4e404ee7af1545872942de0c3034b0774d50c74ccd9aaee84294b05d25d595b7f7e9fdd71f91730bb4ff64f611e574d194e5010762a77466f0cae6db6d89309
SSDEEP

6144:ub4fTvO9w70cEu+d/RBYyUCuidSOkYfI5agQB4xL:Pfqw0f/RBpUCbxgQB4x

Score

N/A

Malware Config

Signatures

Files

1626de464a39eee3920daa59df6d86023a86c91411e286f15e671802035251a2
.exe windows x86

add02948f0c6578d7eda3667bb398815

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetSystemInfo
VirtualAllocEx
GetProcessHeap
GetCurrentThread
ReadFile

user32

LoadIconA
LoadStringA
MapVirtualKeyA
MessageBeep
MessageBoxA
MoveWindow
PeekMessageA
PostMessageA
PostQuitMessage
RegisterClassA
RegisterWindowMessageA
ReleaseCapture
LoadCursorA
SendDlgItemMessageA
SendMessageA
SetCapture
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage
UnregisterClassA
UpdateWindow
WinHelpA
wsprintfA
LoadBitmapA
IsWindowVisible
IsIconic
InvalidateRect
GetWindowTextA
GetWindowRect
GetWindowLongA
GetParent
GetMessageA
GetMenu
GetKeyNameTextA
GetDlgItemTextA
GetDlgItem
GetDesktopWindow
GetDC
GetCursorPos
FindWindowA
FillRect
EndPaint
EndDialog
EnableWindow
EnableMenuItem
DrawTextA
DrawMenuBar
DispatchMessageA
DialogBoxParamA
DialogBoxIndirectParamA
DestroyWindow
DeleteMenu
DefWindowProcA
CreateWindowExA
CheckMenuItem
BeginPaint
GetSystemMetrics
ReleaseDC

gdi32

CreateDIBitmap
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreatePalette
CreateSolidBrush
StretchDIBits
SetTextColor
SetSystemPaletteUse
SetPaletteEntries
SetLayout
SetBkMode
SelectPalette
SelectObject
ResizePalette
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetObjectA
GetLayout
GetDeviceCaps
DeleteObject
DeleteDC
GetStockObject

advapi32

RegCloseKey
RegCreateKeyW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegQueryInfoKeyW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW

msvcrt

_wsplitpath
ctime
memmove
time
_vsnwprintf

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

add02948f0c6578d7eda3667bb398815

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

Sections

.text Size: 54KB - Virtual size: 54KB

.text2 Size: 1024B - Virtual size: 1000B

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 308B

.data Size: 268KB - Virtual size: 268KB

.text
Size: 54KB - Virtual size: 54KB

.text2
Size: 1024B - Virtual size: 1000B

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 308B

.data
Size: 268KB - Virtual size: 268KB