5290a17eb165e9d17d14b335b0f6185d8fd71bff72a11e0f6d0f21a105a1f3b5

Sharing

Copy URL Twitter E-mail

General

Target

5290a17eb165e9d17d14b335b0f6185d8fd71bff72a11e0f6d0f21a105a1f3b5
Size

592KB
MD5

7f51c181613347eb3405362be7ebe2aa
SHA1

98b7b31f8697119c86e507a4d1775de639ad8a65
SHA256

5290a17eb165e9d17d14b335b0f6185d8fd71bff72a11e0f6d0f21a105a1f3b5
SHA512

a3155480518faccb0ebacc5cc4467b3dde25bcfb09c1270ac7ab6bfe67862628f93fda68e5e62b38b020dc9df02974af75818505d67e8033ec5d69ff0ba178d9
SSDEEP

12288:/YPHLVWF64G8aC4Q+c9dGqhtAVbmQYdW6ydP0yVZPe9BzXK6h1GL8:/YPZWzYM+c9kG2VbmvdW1P0oNezK6h1/

Score

N/A

Malware Config

Signatures

Files

5290a17eb165e9d17d14b335b0f6185d8fd71bff72a11e0f6d0f21a105a1f3b5
.exe windows x86

a5bf06691b9a8b42dcd1162619e3f429

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetEnhMetaFileBits
BitBlt
GetCharWidth32W
SetWorldTransform
LPtoDP
SetTextAlign
SetSystemPaletteUse
LineTo
GetSystemPaletteUse
StrokeAndFillPath
SetGraphicsMode
CreateRoundRectRgn
CombineRgn
GetKerningPairsW
SetBitmapBits

shell32

SheChangeDirExW
SHGetSpecialFolderPathW
SHGetDiskFreeSpaceA

comdlg32

FindTextW
GetSaveFileNameA
LoadAlterBitmap
PrintDlgW

comctl32

CreatePropertySheetPageA
ImageList_BeginDrag
ImageList_AddIcon
ImageList_ReplaceIcon
DrawStatusText
CreateToolbarEx
ImageList_GetImageCount
ImageList_Read
ImageList_SetFlags
ImageList_LoadImageA
ImageList_LoadImage
ImageList_EndDrag
InitCommonControlsEx

user32

DispatchMessageA
DrawCaption
GetWindowModuleFileNameW
EnumWindows
IsCharLowerA
DestroyIcon
ExcludeUpdateRgn
UnregisterDeviceNotification
DestroyWindow
WINNLSGetEnableStatus
DefWindowProcW
MessageBoxA
MessageBoxExW
GetTitleBarInfo
MonitorFromRect
GetDCEx
GetWindowTextLengthA
RegisterClassA
SetSystemCursor
CreateWindowExA
GetMenuItemID
CreateDesktopW
EnumDesktopWindows
SetMenuInfo
LoadMenuW
GetMenuInfo
GetMenuDefaultItem
RegisterClassExA
WinHelpA
ShowWindow
OpenDesktopW
VkKeyScanExW
GetProcessDefaultLayout
CharLowerW
RemovePropA

kernel32

TlsSetValue
GetACP
Sleep
WriteProfileSectionA
CloseHandle
GetStartupInfoW
CompareStringW
HeapSize
SetStdHandle
CreateFileA
HeapDestroy
SetHandleCount
FreeLibrary
WaitForSingleObject
GetTickCount
GetStringTypeA
VirtualQuery
GetLogicalDriveStringsA
LocalSize
FindNextFileW
FreeEnvironmentStringsW
GlobalGetAtomNameW
SetFilePointer
GetCurrentProcess
FindResourceExA
VirtualFree
OpenWaitableTimerA
GetProcessAffinityMask
HeapCreate
GetModuleHandleW
SetLastError
GetTimeFormatA
LoadLibraryA
EnumSystemLocalesA
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
WriteConsoleW
GetTimeFormatW
GetCurrentThread
SetConsoleCtrlHandler
TerminateProcess
InitializeCriticalSectionAndSpinCount
HeapReAlloc
ExitProcess
TlsGetValue
LCMapStringW
CreateMutexA
WriteConsoleA
IsDebuggerPresent
LCMapStringA
GetCurrentThreadId
GetConsoleOutputCP
FindFirstFileExA
GetCurrentProcessId
IsValidCodePage
GetSystemTimeAsFileTime
GetUserDefaultLCID
WriteFile
FlushFileBuffers
GetLastError
QueryPerformanceCounter
GetConsoleCP
IsValidLocale
TlsFree
GetEnvironmentStringsW
GetStringTypeW
HeapFree
GetProcAddress
MultiByteToWideChar
VirtualAlloc
HeapAlloc
GetCommandLineW
GetLocaleInfoW
OpenMutexA
GetStdHandle
SetComputerNameA
GetModuleFileNameA
GetOEMCP
GetDateFormatA
InterlockedDecrement
GetModuleHandleA
DeleteCriticalSection
GetCommandLineA
GetTimeZoneInformation
SetUnhandledExceptionFilter
GetConsoleMode
CompareStringA
GetFileType
ReadFile
FlushViewOfFile
InterlockedIncrement
GetModuleFileNameW
InterlockedExchange
GetLocaleInfoA
GetStartupInfoA
GetCPInfo
RtlUnwind
SetEnvironmentVariableA
WideCharToMultiByte
UnhandledExceptionFilter

wininet

InternetShowSecurityInfoByURLA
GopherOpenFileA
DeleteUrlCacheEntry
InternetConfirmZoneCrossing
FtpPutFileEx
HttpOpenRequestA
HttpEndRequestA

Sections

.text
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5bf06691b9a8b42dcd1162619e3f429

Headers

File Characteristics

Imports

gdi32

shell32

comdlg32

comctl32

user32

kernel32

wininet

Sections

.text Size: 184KB - Virtual size: 180KB

.rdata Size: 256KB - Virtual size: 255KB

.data Size: 116KB - Virtual size: 128KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 184KB - Virtual size: 180KB

.rdata
Size: 256KB - Virtual size: 255KB

.data
Size: 116KB - Virtual size: 128KB

.rsrc
Size: 32KB - Virtual size: 28KB