5a9b953eb61b94cf18a76516aca8f476c55f2b86d966a06756f767e78a468cb2

Sharing

Copy URL Twitter E-mail

General

Target

5a9b953eb61b94cf18a76516aca8f476c55f2b86d966a06756f767e78a468cb2
Size

184KB
MD5

5ea80ecf0c60f07950d47c5fa328feb0
SHA1

893aab1fba606210ae7f949a2272287efb1f258b
SHA256

5a9b953eb61b94cf18a76516aca8f476c55f2b86d966a06756f767e78a468cb2
SHA512

d66b71ed9b41fd6f9c88efdfab11833581b203e0018286e1cab4bb9e944bc5df2b8e1c5430da0d26b758551956604f9605330833567d911535d8f765de413b39
SSDEEP

3072:fatWo2cN/cVk+Zgs2sz+Nb8X9LGd+vPEoIHEzeREUju2r2:bo2cpifEs6iLGm8rkzaRRa

Score

N/A

Malware Config

Signatures

Files

5a9b953eb61b94cf18a76516aca8f476c55f2b86d966a06756f767e78a468cb2
.exe windows x86

0d01dce577af382bdff56d7be1d2d6c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

srand
swscanf
calloc
_controlfp
strcoll
__set_app_type
isupper
__p__fmode
__p__commode
wcscpy
strtol
_amsg_exit
isalpha
wcstol
wcschr
fflush
iswdigit
wcstok
iswspace
swprintf
fseek
isxdigit
wcscmp
wcstoul
setlocale
_initterm
getenv
clearerr
_ismbblead
fwrite
clock
exit
iswprint
wcsrchr
vswprintf
isalnum
_XcptFilter
wcsstr
putc
_exit
sscanf
_cexit
wcstombs
tolower
putchar
__setusermatherr
__getmainargs

comctl32

ImageList_LoadImageW
PropertySheetW
ImageList_Read
ImageList_Remove
ImageList_Destroy
PropertySheetA

user32

ClipCursor
OpenDesktopW
ChildWindowFromPointEx
SetWindowLongW
IsDialogMessageW
SetPropW
MapVirtualKeyA
GetWindow
CheckDlgButton
OpenInputDesktop
CharToOemA
IsIconic
FindWindowExW
GetKeyboardType
UpdateWindow
GetMessageA
CascadeWindows
SendDlgItemMessageW
IsCharLowerA
LoadBitmapW
SetMenuItemInfoW
IsRectEmpty
GetFocus
GetMenuState
GetDC
GetMenuItemRect
CharNextA
ScrollWindow
ScrollWindowEx
DrawAnimatedRects
ValidateRect
GetDlgItemInt
SetFocus
IsCharAlphaW
TabbedTextOutW
InvalidateRgn
RegisterWindowMessageW
DrawTextW
AppendMenuA
HiliteMenuItem
SetCursor
GetSysColorBrush
LoadImageA
GetClassInfoExW
MessageBoxW
ShowScrollBar
AdjustWindowRect
ShowCaret
WindowFromPoint
BeginDeferWindowPos
ReplyMessage
SetWindowLongA
SendInput
UnionRect
GetScrollInfo
GetParent
SetCaretPos
GetKeyboardLayoutList
EnableScrollBar
GetDlgCtrlID
GrayStringW
GetNextDlgTabItem
InsertMenuW
PostMessageA
LoadAcceleratorsW
GetShellWindow
OpenIcon
SendNotifyMessageW
GetWindowLongW
EnableWindow
SetDlgItemTextW
SetLastErrorEx
GetMonitorInfoW
GetClassInfoExA
DefFrameProcA
RegisterClassW
GetDoubleClickTime
DefFrameProcW
IsWindow
SetTimer
ActivateKeyboardLayout
ReleaseDC
MessageBoxExW
PostThreadMessageA
VkKeyScanW
DefDlgProcA
GetDlgItemTextW
IsCharAlphaA
DragObject
keybd_event
SetClassLongW
DeleteMenu
CharNextW
TileWindows
DrawTextExW
CharUpperW
ShowWindowAsync
SetMenuItemBitmaps
SetWindowPos
TranslateAcceleratorW
AdjustWindowRectEx
TranslateAcceleratorA
GetAsyncKeyState
SendMessageA
wvsprintfW
LoadAcceleratorsA
ShowOwnedPopups
GetCaretPos
GetKeyboardLayout
TranslateMessage
IsMenu
SetWindowTextA
GetWindowTextW
CreateDialogParamW
GetMenuStringW
TrackPopupMenuEx
MessageBoxExA
DeferWindowPos

kernel32

GetComputerNameExA
HeapReAlloc
GlobalFree
RemoveDirectoryW
GetWindowsDirectoryA
lstrcmpA
WaitForSingleObjectEx
FormatMessageA
SleepEx
SetFileTime
SetLastError
GetThreadTimes
IsBadWritePtr
DisconnectNamedPipe
GetPriorityClass
DeleteCriticalSection
GetCurrentDirectoryW
ResumeThread
LoadLibraryA
LoadLibraryExA
SetErrorMode
LockResource
LocalFree
RegisterWaitForSingleObject
FindResourceExW
HeapLock
SetSystemTimeAdjustment
GetComputerNameA
SetFilePointer
GetSystemWindowsDirectoryW
lstrcatW
SuspendThread
RaiseException
GetDateFormatW
LCMapStringW
GetComputerNameExW
GetOverlappedResult
GlobalMemoryStatus
CloseHandle
CreateSemaphoreW
ReadFile
TransactNamedPipe
MapViewOfFile
TerminateThread
FreeLibrary
GetStartupInfoA
GetUserDefaultUILanguage
QueryDosDeviceW
IsValidLanguageGroup
GetExitCodeThread
SetupComm
WaitForSingleObject
HeapWalk
GetHandleInformation

Exports

Exports

?ExtractOptions@@YGK_KHE[D

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.div
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d01dce577af382bdff56d7be1d2d6c6

Headers

File Characteristics

Imports

msvcrt

comctl32

user32

kernel32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.idata Size: 6KB - Virtual size: 5KB

.edata Size: 512B - Virtual size: 134B

.div Size: 1KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 187KB

.rsrc Size: 152KB - Virtual size: 151KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 19KB

.idata
Size: 6KB - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 134B

.div
Size: 1KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 187KB

.rsrc
Size: 152KB - Virtual size: 151KB

.reloc
Size: 1KB - Virtual size: 1KB