52705c5d223c21001ad3ce93a71cbb4345b9f297f40ec95874e961d4dae66975

Sharing

Copy URL Twitter E-mail

General

Target

52705c5d223c21001ad3ce93a71cbb4345b9f297f40ec95874e961d4dae66975
Size

322KB
MD5

663a405884dfbb84fa4bb4b7fdc3d5d8
SHA1

b11fe19907a672d775382a858fa9debe56bef142
SHA256

52705c5d223c21001ad3ce93a71cbb4345b9f297f40ec95874e961d4dae66975
SHA512

2e377ff203be30e93e4954ecd67fe2cf65ff5d44fc35f5f5b720531693c352dea9a6a54ed506d6dda2ea626897c82648aaed6a4716cd99053bbe4b87f6021a5a
SSDEEP

6144:Gw55fDFocYpjggjGlRpqbbamuxpFlng3LgKuVVZPrBmmiGJ3X3H3H5p:Gwn9gjGl+QxpFlg72RdmvUnH35p

Score

N/A

Malware Config

Signatures

Files

52705c5d223c21001ad3ce93a71cbb4345b9f297f40ec95874e961d4dae66975
.exe windows x86

ac408343220efd329bf2bac83dfd594f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ExtractIconW
SHGetInstanceExplorer
SHQueryRecycleBinW
SHFileOperationA

wininet

InternetDial
GetUrlCacheConfigInfoW
GetUrlCacheEntryInfoExA
InternetGoOnline
HttpQueryInfoA
InternetGetConnectedState
FindNextUrlCacheEntryExW

advapi32

CryptGetKeyParam
CryptSetProviderW
RegQueryValueExA
CryptDecrypt
InitializeSecurityDescriptor
RegQueryValueW
RegQueryValueA
RegEnumKeyExA
RegQueryMultipleValuesA
CryptSignHashA
RegQueryValueExW
RegDeleteValueW
CryptContextAddRef
CryptSetProvParam
ReportEventA
RegQueryMultipleValuesW

comdlg32

ChooseFontA
FindTextA

kernel32

SetHandleCount
TlsFree
CompareStringW
InitializeCriticalSection
GetDriveTypeW
VirtualQuery
IsValidLocale
SetEnvironmentVariableA
GetCommandLineA
SetUnhandledExceptionFilter
LocalFlags
GetProcessHeap
LeaveCriticalSection
SetLastError
GetModuleFileNameW
GetCurrentProcessId
VirtualFree
GetACP
GetStartupInfoA
OpenMutexA
ReadFile
GetStdHandle
InterlockedIncrement
UnhandledExceptionFilter
RtlUnwind
VirtualAlloc
GetUserDefaultLCID
GetVersionExA
HeapSize
GetLocaleInfoA
CreateMutexA
SetStdHandle
SetConsoleTitleW
GetCPInfo
GetStringTypeA
FillConsoleOutputCharacterW
GetTimeZoneInformation
GetModuleHandleA
LCMapStringA
SetConsoleCtrlHandler
TlsGetValue
SetThreadAffinityMask
GetProcAddress
FindClose
WritePrivateProfileSectionA
WriteConsoleW
HeapReAlloc
GetLastError
GetDateFormatA
DeleteFiber
GetEnvironmentStringsW
PulseEvent
GetEnvironmentStrings
GetModuleFileNameA
FindFirstFileW
ExitProcess
GetLocaleInfoW
QueryPerformanceCounter
CloseHandle
GetCommandLineW
LCMapStringW
TlsAlloc
TryEnterCriticalSection
LoadLibraryA
Sleep
SetFilePointer
EnumSystemLocalesA
GetFileType
CreateFileA
WriteFile
VirtualFreeEx
GetProfileSectionW
RemoveDirectoryA
GetCurrentThreadId
TerminateProcess
HeapCreate
GetConsoleCP
WriteConsoleA
DeleteCriticalSection
IsDebuggerPresent
FlushFileBuffers
FreeLibrary
MultiByteToWideChar
GetSystemTimeAsFileTime
IsValidCodePage
TlsSetValue
CopyFileA
GetConsoleMode
FreeEnvironmentStringsA
FindNextFileA
GetSystemTime
HeapAlloc
HeapDestroy
FlushInstructionCache
GetTimeFormatA
HeapFree
GetFileAttributesExA
GetConsoleOutputCP
GetStartupInfoW
EnterCriticalSection
GetCurrentThread
GetOEMCP
CompareStringA
WideCharToMultiByte
GetTickCount
InterlockedDecrement
GetEnvironmentVariableW
GetStringTypeW
GetCurrentProcess
FreeEnvironmentStringsW
InterlockedExchange
LocalHandle

user32

SetRectEmpty
RegisterClassA
WinHelpW
GetMenuCheckMarkDimensions
CharUpperW
IsMenu
DdeFreeStringHandle
UnregisterClassW
LoadBitmapA
LoadImageA
CheckMenuItem
PtInRect
RegisterClassW
DdeInitializeW
RegisterClassExA
OpenWindowStationW
GetWindowInfo
DdeCreateStringHandleA
DestroyWindow
EqualRect
TabbedTextOutW
InsertMenuItemW
SetShellWindow

comctl32

InitCommonControlsEx

Sections

.text
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac408343220efd329bf2bac83dfd594f

Headers

File Characteristics

Imports

shell32

wininet

advapi32

comdlg32

kernel32

user32

comctl32

Sections

.text Size: 151KB - Virtual size: 150KB

.rdata Size: 11KB - Virtual size: 33KB

.data Size: 148KB - Virtual size: 148KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 151KB - Virtual size: 150KB

.rdata
Size: 11KB - Virtual size: 33KB

.data
Size: 148KB - Virtual size: 148KB

.rsrc
Size: 10KB - Virtual size: 10KB