a8ec21d0644f3b530b4c602027caf6fd6e66116092efbdbf475e909fe140f47b

Sharing

Copy URL Twitter E-mail

General

Target

a8ec21d0644f3b530b4c602027caf6fd6e66116092efbdbf475e909fe140f47b
Size

123KB
MD5

43e81365701cf735905510cd1d59f0c8
SHA1

a4ba4e644dd18fe501170322adfc1c05cdc582b2
SHA256

a8ec21d0644f3b530b4c602027caf6fd6e66116092efbdbf475e909fe140f47b
SHA512

36f213dc8e0964c28f8a916e28f381b7ae1537c2b809d6ae0b9e7969f88013975b5f85626115f9c5a32053846dc9d343baace43c22ae7899e887be375e63c806
SSDEEP

3072:wqHqLk4Ua8nhWzJw5Nc/XtZPuUaRXoArY:wELIAcSb

Score

N/A

Malware Config

Signatures

Files

a8ec21d0644f3b530b4c602027caf6fd6e66116092efbdbf475e909fe140f47b
.exe windows x86

d4c40d2e91e0691f544d9090d8b1a19b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
CreatePipe
GlobalAlloc
GetVersion
TerminateProcess
CompareStringA
LCMapStringW
GetLastError
SetEnvironmentVariableA
RaiseException
GetFileType
PeekNamedPipe
GetEnvironmentVariableA
GetCurrentProcess
FileTimeToSystemTime
GetACP
GetVersionExA
DuplicateHandle
CreateDirectoryA
HeapReAlloc
FreeEnvironmentStringsA
SetEndOfFile
HeapAlloc
GetEnvironmentStringsW
WideCharToMultiByte
GetProcessHeap
FileTimeToLocalFileTime
MultiByteToWideChar
CreateProcessA
GetTimeZoneInformation
RtlUnwind
GetLocalTime
GetStringTypeA
FlushFileBuffers
SetStdHandle
GlobalUnlock
GlobalLock
GetSystemTimeAsFileTime
GetPrivateProfileIntA
CreateThread
GetFileInformationByHandle
GetOEMCP
Sleep
SetCurrentDirectoryA
GetPrivateProfileStringA
GetStdHandle
WriteFile
LCMapStringA
GetCurrentDirectoryA
HeapDestroy
SetHandleCount
VirtualFree
GetEnvironmentStrings
FreeEnvironmentStringsW
HeapFree
SetFilePointer
CompareStringW
VirtualAlloc
GetCPInfo
FreeLibrary
GetStartupInfoA
GetStringTypeW
CloseHandle
VirtualProtect
GetModuleHandleA
GetModuleFileNameA
LockResource
LoadLibraryA
GetProcAddress
ReadFile
CreateFileA
HeapCreate
ExitProcess

user32

LoadIconA
EnableWindow
SetTimer
IsClipboardFormatAvailable
GetCursorPos
SetWindowLongA
RegisterWindowMessageA
SendMessageA
IsWindow
SetForegroundWindow
DialogBoxParamA
BeginPaint
EmptyClipboard
ClientToScreen
MoveWindow
TrackPopupMenu
OpenClipboard
GetWindowRect
SetMenuDefaultItem
ReleaseCapture
GetSystemMetrics
IsIconic
GetKeyState
CopyRect
DispatchMessageA
CloseClipboard
IsZoomed
PostQuitMessage
GetSysColor
CheckMenuItem
GetDlgItem
LoadCursorA
DefMDIChildProcA
ReleaseDC
EndDialog
GetWindowPlacement
PtInRect
LoadMenuA
RegisterClassExA
DefFrameProcA
AppendMenuA
SetFocus
GetClientRect
SetCapture
KillTimer
GetMessageA
EnableMenuItem
EndPaint
DeleteMenu
ModifyMenuA
LoadImageA
MessageBoxA
ShowWindow
UpdateWindow
MessageBeep
SetWindowPos
DestroyIcon
GetClipboardData
InvalidateRect
GetDC
PostMessageA
SetWindowTextA
SendDlgItemMessageA
GetWindowTextA
SetClassLongA
CreateWindowExA
DestroyMenu
TranslateMessage
SetClipboardData
GetWindow
GetWindowTextLengthA
GetSubMenu

gdi32

DeleteDC
MoveToEx
CreateSolidBrush
StretchBlt
Rectangle
CreateCompatibleBitmap
LineTo
SetBkColor
GetObjectA
SelectObject
SetStretchBltMode
SetPolyFillMode
SelectClipRgn
GetTextExtentPoint32A
ExtSelectClipRgn
GetMapMode
Polygon
CreateRectRgn
GetStockObject
BitBlt
CreateBitmap
SetTextColor
DeleteObject
ExtTextOutA
CreatePen
GetDeviceCaps
GetPixel
CreateFontIndirectA
CreateDCA
SetMapMode
CreateCompatibleDC

comdlg32

GetOpenFileNameA
ChooseFontA
ChooseColorA
GetSaveFileNameA

shell32

SHAppBarMessage
ShellExecuteA
Shell_NotifyIconA
SHGetSpecialFolderPathA

wsock32

WSACleanup
WSAStartup
closesocket
WSAAsyncSelect
htons
WSAGetLastError
socket
gethostname
gethostbyname
connect
send
recv

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4c40d2e91e0691f544d9090d8b1a19b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

wsock32

Sections

.text Size: 73KB - Virtual size: 73KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 29KB - Virtual size: 63KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 73KB - Virtual size: 73KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 29KB - Virtual size: 63KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 1KB