0b76a74c061bfaee37becc938c138b221dd3f755e9a47d224f9bcd20448199ac

Sharing

Copy URL Twitter E-mail

General

Target

0b76a74c061bfaee37becc938c138b221dd3f755e9a47d224f9bcd20448199ac
Size

207KB
MD5

0531ebb9003eec523434cf0b09fa5ce2
SHA1

518d6b4637908039c2fd5e2df058f3b766838207
SHA256

0b76a74c061bfaee37becc938c138b221dd3f755e9a47d224f9bcd20448199ac
SHA512

148e6ea69cacde2e4e92ed1ee6654b5c453ae019de735832227a95580e6312dbccdfa71c614aace91da75cc2b56e929d118b898d2423c9ac9cc7105e68b79085
SSDEEP

6144:yawd59U7NGgFIrqWF1xoIFPIuWWwjiQxVpEdImlBul5D:6fq7XzWLmUP7NOirXKl5

Score

N/A

Malware Config

Signatures

Files

0b76a74c061bfaee37becc938c138b221dd3f755e9a47d224f9bcd20448199ac
.exe windows x86

22186d247046e66d30325fe7633f7a41

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathAppendA
PathIsPrefixW

kernel32

CreateSemaphoreW
CreateFileMappingA
GetConsoleScreenBufferInfo
SetCurrentDirectoryW
PostQueuedCompletionStatus
SetProcessWorkingSetSize
WaitForMultipleObjects
GetOEMCP
CreateIoCompletionPort
ScrollConsoleScreenBufferA
GetShortPathNameW
GetVersion
GetFileInformationByHandle
GlobalAddAtomW
GetPrivateProfileSectionW
GlobalReAlloc
IsBadCodePtr
GlobalMemoryStatus
lstrcpynA
DefineDosDeviceW
GetProcessHeap
FindResourceExA
FindNextVolumeMountPointW
GetShortPathNameA
GetStartupInfoA
OpenFileMappingW
SetFileAttributesW
GetTimeFormatA
CreateFileMappingW
CreateEventW
ContinueDebugEvent
GetDiskFreeSpaceExA
FileTimeToDosDateTime
EnumResourceNamesW
ReadConsoleW
CreateProcessA
lstrlenW
ResetEvent
CloseHandle
FindNextVolumeA
GetSystemTime
FindFirstFileA
VerifyVersionInfoW
GetStartupInfoW
MultiByteToWideChar
ExitThread
GetBinaryTypeW
lstrcatA
CreateFileW
WriteConsoleW
GetTimeFormatW
lstrcpynW
GetVersionExW
GetConsoleAliasExesLengthW
GetSystemWindowsDirectoryA
SetVolumeMountPointA
ReadProcessMemory
WideCharToMultiByte
OpenProcess
GetFileAttributesExA
GetQueuedCompletionStatus
GlobalAddAtomA
LoadLibraryExW
FreeLibrary
FindResourceW
SetErrorMode
GetSystemDefaultUILanguage
UnmapViewOfFile
lstrlenA
TryEnterCriticalSection
SearchPathW
CreateMutexW
GetThreadContext
WritePrivateProfileSectionA

user32

EmptyClipboard
CharUpperW
InSendMessageEx
SetClassLongW
GetWindowLongA
DdeCreateDataHandle
GetWindowLongW
OemToCharA
SetRect
GetKeyboardLayout
CreateDialogIndirectParamW
OpenWindowStationA
GetWindowTextA
LoadIconW
CreateDialogIndirectParamA
GetForegroundWindow
InflateRect
GetDC
GetUpdateRect
GetScrollRange
BeginPaint
DdeQueryStringW
SetRectEmpty
SendMessageA
CloseDesktop
EnumDesktopsW
GetClientRect
DdeUnaccessData
DdeGetData
CharLowerBuffW
CharPrevW
LoadStringA
DefDlgProcW
SetMenuItemBitmaps
GetSubMenu
GetPropA
DrawTextA
MsgWaitForMultipleObjects
DrawTextW
LoadImageW
IsCharAlphaA
GetKeyNameTextA
GetThreadDesktop
RegisterWindowMessageW
PostThreadMessageA
IsMenu
DestroyAcceleratorTable
GetUpdateRgn
InvertRect
DdeInitializeW
BringWindowToTop
DdeUninitialize
SetSysColors
GetClassInfoW
DrawIconEx
ArrangeIconicWindows
CopyRect
SetWindowTextW
FindWindowExW
DrawStateA
CharToOemA
ScrollWindowEx
CreateDialogParamW
TrackPopupMenuEx
FindWindowExA
CharUpperA
CreateDesktopW
MonitorFromRect
RegisterClassA
EnableScrollBar
GetMenuStringA
PeekMessageW
GetClipboardData
LoadMenuW
TranslateMessage
CharLowerW
DefFrameProcA
MessageBeep
ImpersonateDdeClientWindow
SetWindowLongW
EndDialog
SetWindowsHookExA
BroadcastSystemMessageW
GetCursorPos
LoadAcceleratorsA
SetMenu
LoadBitmapW
GetClassInfoA
ShowScrollBar
PostMessageA
wvsprintfA
GetKeyboardType
InsertMenuW
SetWindowsHookExW
AdjustWindowRectEx
MessageBoxW
RegisterClassW
DdeNameService
RegisterClipboardFormatW
CharToOemBuffW
EnableWindow
DialogBoxIndirectParamA
GetDlgItemTextA
DialogBoxParamA
UnpackDDElParam
MessageBoxExW
SetDlgItemTextA
GetScrollPos
GetKeyboardLayoutList
EnumDisplaySettingsW
DdeFreeDataHandle
OemToCharBuffA
GetWindow
IsCharAlphaNumericA
IsRectEmpty

gdi32

PathToRegion
OffsetViewportOrgEx
GetFontData
RoundRect
RectVisible
EnumFontFamiliesExW
SetViewportExtEx
FillRgn
PtVisible
SelectObject
CreateDCW
EnumMetaFile
SetAbortProc
PlayMetaFileRecord
CreateHalftonePalette
CreateFontIndirectA
CreateFontIndirectW
StartPage
WidenPath
GetTextExtentPoint32A
PlayMetaFile
GetTextExtentPoint32W
AddFontResourceA
MoveToEx
GetBitmapBits
BeginPath
CloseEnhMetaFile
GetTextExtentPointA
GetTextExtentPointW
DeleteMetaFile
BitBlt
GetObjectW
ScaleWindowExtEx
GetMetaFileBitsEx
RestoreDC

ole32

CoBuildVersion
CoInitialize
OleIsCurrentClipboard

Exports

Exports

?EmicRoamDevsRaveagean@@YGXPC_W@Z

Sections

.itext
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 111B

IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.union
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22186d247046e66d30325fe7633f7a41

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.itext Size: 17KB - Virtual size: 16KB

.text Size: 512B - Virtual size: 111B

.data Size: 98KB - Virtual size: 97KB

.rdata Size: 47KB - Virtual size: 46KB

.union Size: 27KB - Virtual size: 27KB

.rsrc Size: 10KB - Virtual size: 10KB

.reloc Size: 5KB - Virtual size: 5KB

.itext
Size: 17KB - Virtual size: 16KB

.text
Size: 512B - Virtual size: 111B

.data
Size: 98KB - Virtual size: 97KB

.rdata
Size: 47KB - Virtual size: 46KB

.union
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 10KB - Virtual size: 10KB

.reloc
Size: 5KB - Virtual size: 5KB