6a7ee358f215de6da0d1f80f1b7419dcdccdfd4a65979cf8da31547371b85803

Sharing

Copy URL

Twitter E-mail

General

Target

6a7ee358f215de6da0d1f80f1b7419dcdccdfd4a65979cf8da31547371b85803
Size

174KB
MD5

50dce2f2714344f430e7ab7550895930
SHA1

84853c5ec4ebfc573ac19d690441b69ebd27cd54
SHA256

6a7ee358f215de6da0d1f80f1b7419dcdccdfd4a65979cf8da31547371b85803
SHA512

e62eec6c227c7d191949016c6e35f9d69811f33d965e8c7dca591cc9a80c6d3cc467e565934c51a0330952e2dcc5339752852786de05218f5733d51eec8b897c
SSDEEP

3072:fu6VxDf6qL/jqSnA8QcuExUz1PPv5g1q4v68JgMZAKLtCa4coCI:2etDLLqSZQcl6tr4v68JgMbxCaboCI

Score

N/A

Malware Config

Signatures

Files

6a7ee358f215de6da0d1f80f1b7419dcdccdfd4a65979cf8da31547371b85803
.exe windows x86

0a49c89eeebc1b40c7024245ac3345b6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
free
__set_app_type
__p__fmode
setlocale
__p__commode
isspace
wcscpy
clearerr
fputc
ungetc
perror
strerror
wcsncpy
_amsg_exit
wcstol
_initterm
_ismbblead
isprint
_XcptFilter
srand
_exit
strtol
towupper
mbtowc
strspn
isdigit
memset
_cexit
__setusermatherr
floor
__getmainargs
wcscmp
islower
atoi
iswdigit
strtok

kernel32

GetFileType
FindNextChangeNotification
lstrcmpA
MulDiv
SetEvent
FreeLibrary
LockFile
DeleteFileA
CreatePipe
FindCloseChangeNotification
ConnectNamedPipe
GetCommModemStatus
GetTimeZoneInformation
WinExec
lstrcpyW
CompareStringW
LocalLock
GetHandleInformation
FindFirstFileW
GetCompressedFileSizeW
GetTempFileNameW
InitializeCriticalSection
SetupComm
ResetEvent
CloseHandle
DeleteFileW
OpenEventW
GetModuleFileNameA
IsBadStringPtrW
GetNumberFormatA
SystemTimeToFileTime
FindClose
LoadLibraryExW
FoldStringW
SetFileAttributesA
FreeResource
GetPriorityClass
CompareFileTime
GetCommandLineW

comdlg32

ReplaceTextW
PageSetupDlgW
FindTextW
GetSaveFileNameA

shlwapi

UrlGetLocationA

user32

CreateCursor
IsCharAlphaA
DestroyAcceleratorTable
SetRectEmpty
MessageBoxExW
IsMenu
GetClassInfoA
SetRect
GetScrollRange
MoveWindow
GetNextDlgTabItem
LoadCursorW
OemToCharA
ReleaseDC
ReplyMessage
MonitorFromPoint
CharLowerA
DestroyCaret
IntersectRect
AttachThreadInput
SetMenuItemInfoW
SetMenu
GetDialogBaseUnits
GetUserObjectInformationA
CharLowerW
IsWindowEnabled
LoadCursorA
GetClassInfoExW
CharUpperBuffW
MonitorFromRect
GetMenuItemID
GetWindowPlacement
SendInput
CharPrevA
SystemParametersInfoW
MapDialogRect
DrawTextW
CheckMenuItem
GetKeyboardLayoutNameW
CreateAcceleratorTableW
GetCursorPos
AdjustWindowRectEx
PostThreadMessageA
LoadStringA
PostMessageW
GetSubMenu
IsIconic
SetFocus
TrackPopupMenu
GetScrollPos
DialogBoxIndirectParamA
OpenIcon
CopyAcceleratorTableW
GetKeyboardLayout
LoadImageW
MessageBoxA
SendNotifyMessageW
RegisterClassW
GetMessageExtraInfo
GetSysColor
RegisterWindowMessageW
CharUpperW
InvalidateRgn
EnumChildWindows
LoadAcceleratorsW
InvertRect
EqualRect
UnloadKeyboardLayout
CallWindowProcW
IsCharAlphaNumericW
SetWindowLongW
CharToOemW
DrawIconEx
SetMenuDefaultItem
GetSystemMetrics
IsCharAlphaW
GetMenuStringA
InSendMessageEx
BringWindowToTop
GetDCEx
SetScrollPos
FindWindowExA
wsprintfW
InSendMessage

Exports

Exports

?HistoryLoggingOn@@YGKDKPAX:O

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.eplan
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ainit
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdbg
Size: 512B - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iplan
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.run
Size: 512B - Virtual size: 267B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0dat
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a49c89eeebc1b40c7024245ac3345b6

Headers

File Characteristics

Imports

msvcrt

kernel32

comdlg32

shlwapi

user32

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 23KB

.eplan Size: 512B - Virtual size: 91B

.ainit Size: 1024B - Virtual size: 852B

.rdbg Size: 512B - Virtual size: 109B

.data Size: 2KB - Virtual size: 185KB

.iplan Size: 4KB - Virtual size: 4KB

.run Size: 512B - Virtual size: 267B

.0dat Size: 139KB - Virtual size: 138KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 23KB - Virtual size: 23KB

.eplan
Size: 512B - Virtual size: 91B

.ainit
Size: 1024B - Virtual size: 852B

.rdbg
Size: 512B - Virtual size: 109B

.data
Size: 2KB - Virtual size: 185KB

.iplan
Size: 4KB - Virtual size: 4KB

.run
Size: 512B - Virtual size: 267B

.0dat
Size: 139KB - Virtual size: 138KB

.rsrc
Size: 2KB - Virtual size: 1KB