2b6ad43426c3f8150772bc61958009a3135f6de0936149cc238f5d95ba657325

Sharing

Copy URL Twitter E-mail

General

Target

2b6ad43426c3f8150772bc61958009a3135f6de0936149cc238f5d95ba657325
Size

132KB
MD5

c2b20f2079266077ddc4d5f08bd0f986
SHA1

a185fdea6ab868ae363eee0c32871e6756479493
SHA256

2b6ad43426c3f8150772bc61958009a3135f6de0936149cc238f5d95ba657325
SHA512

3811509e7d62833bcb03be7b00a25810e7f30249acf74b63b8061f5d9e8037fa93b0bb65e65c2ea7edfd583c1b982518db8f660020122ac5233d19fa5b12e455
SSDEEP

1536:n/f5CNxo2Aq3XSGTE55zGKnJw8LiJgBg7XEWFO+oWfEP6upSde5ShMM:n/f5QNktdrLiJ1XDO+oeECupdEhMM

Score

N/A

Malware Config

Signatures

Files

2b6ad43426c3f8150772bc61958009a3135f6de0936149cc238f5d95ba657325
.exe windows x86

870017a68e1578f4f8994bd4bfa13a28

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

SetServiceObjectSecurity

user32

DrawIcon
CharNextW
EndPaint
GetMenuItemRect
GetWindowLongW
GetCapture
IntersectRect
GetWindowDC
MessageBoxW
GetCursorPos
LoadIconW
OffsetRect
IsChild
GetWindowTextW
BeginPaint
PeekMessageW
SetWindowLongW
MapWindowPoints
SetActiveWindow
GetDlgItemInt
SetParent
wsprintfA
SetWindowTextW
TrackPopupMenu
EmptyClipboard
PtInRect
ReleaseCapture
SetClipboardData
SetCapture
GetSystemMenu
SetWindowTextA
ClientToScreen

kernel32

CompareStringW
CompareStringA
GetTimeZoneInformation
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetLocaleInfoW
MultiByteToWideChar
HeapReAlloc
Sleep
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSection
FreeLibrary
SetConsoleCtrlHandler
EnterCriticalSection
FatalAppExitA
LeaveCriticalSection
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
VirtualFree
InterlockedDecrement
GetCurrentThreadId
InterlockedIncrement
TlsFree
IsDebuggerPresent
GetStdHandle
CreateMutexA
CreateEventA
GetCommandLineW
GetModuleHandleW
lstrcmpA
VirtualAlloc
GlobalFree
GlobalAlloc
FindClose
SetStdHandle
ExitProcess
InterlockedExchange
GetSystemInfo
GetModuleHandleA
SetFilePointer
DeleteCriticalSection
HeapAlloc
LoadLibraryA
SetLastError
lstrlenW
HeapFree
LocalFree
GetVersionExW
HeapSize
SetEndOfFile
GetModuleFileNameA
SetHandleCount
HeapDestroy
LoadResource
GetLocaleInfoA
LCMapStringW
FreeEnvironmentStringsW
WideCharToMultiByte
LoadLibraryW
GetEnvironmentStringsW
HeapCreate
GetEnvironmentStrings
GetPriorityClass
GetCurrentProcessId
GetVersionExA
GetCommandLineA
GetCurrentThread
GetProcessVersion
GetProcessHeap
GetStartupInfoA
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetProcAddress
WriteFile
FreeEnvironmentStringsA
GetLastError
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
SetEnvironmentVariableA

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

870017a68e1578f4f8994bd4bfa13a28

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.text Size: 83KB - Virtual size: 83KB

.data Size: 43KB - Virtual size: 46KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 83KB - Virtual size: 83KB

.data
Size: 43KB - Virtual size: 46KB

.rsrc
Size: 4KB - Virtual size: 4KB