205b694b9379b99c80581b15d74307afaec64eb87ff0eda15bca16c90842b87b

Sharing

Copy URL Twitter E-mail

General

Target

205b694b9379b99c80581b15d74307afaec64eb87ff0eda15bca16c90842b87b
Size

163KB
MD5

570bf8398786b4302a3964071faed440
SHA1

e62c964da797cce264c395a19c8fb9c342f14442
SHA256

205b694b9379b99c80581b15d74307afaec64eb87ff0eda15bca16c90842b87b
SHA512

7a1fb5a7397d47ec053fa102d54bc3e5e549cebd84ebcaab713668ed3ee3babdf637d0e1db2c1fef0293deb0c6b37ad26466b7a56227b8ad5d681e169aff2b8f
SSDEEP

3072:Ub7Kx4fmdvEXnWwdSjUZlVBZkzihZkGySLSKWN7D:Ubdu1EXWE4UZlVAyMeSB9

Score

N/A

Malware Config

Signatures

Files

205b694b9379b99c80581b15d74307afaec64eb87ff0eda15bca16c90842b87b
.exe windows x86

9d6e08a623c017e7de9dd2005b058149

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
LCMapStringA
TlsSetValue
SizeofResource
GetProcessAffinityMask
GetProcAddress
GetCommandLineW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetDriveTypeA
DuplicateHandle
GetVersion
Module32First
VirtualQueryEx
CreateToolhelp32Snapshot
UnmapViewOfFile
lstrlenA
GetThreadContext
LeaveCriticalSection
LoadLibraryW
GetModuleFileNameA
GetComputerNameW
CreateThread
IsDebuggerPresent
LockResource
GetTickCount
TerminateThread
GetNumberFormatA
GlobalUnlock
GetStartupInfoA
GetFileAttributesA
InterlockedIncrement
TlsAlloc
TlsFree
VirtualFree
GetCurrentProcessId
ReadProcessMemory
WriteConsoleW
OpenEventA
InitializeCriticalSection
FileTimeToSystemTime
GetExitCodeThread
GetEnvironmentStringsW
GetModuleHandleA
ReadFile
UnhandledExceptionFilter
VirtualAlloc
IsBadStringPtrA
QueryPerformanceFrequency
CloseHandle
FreeLibrary
InterlockedExchange
IsBadReadPtr
ExpandEnvironmentStringsA
SetFilePointer
SetErrorMode
lstrcpynA
HeapAlloc
GetFileTime
GlobalMemoryStatus
WaitForMultipleObjects
GetConsoleMode
GetStringTypeA
MulDiv
SetLastError
ResumeThread
LCMapStringW
WaitForSingleObject
GetProcessWorkingSetSize

gdi32

CreateCompatibleBitmap
SetBkColor
SelectClipRgn
CreatePen
CreateRectRgnIndirect
CreateFontIndirectA
EndPage
SaveDC
StartDocA
CreateRectRgn
CreateSolidBrush
EndDoc
Rectangle
GetObjectA
GetStockObject
GetTextMetricsA
GetTextExtentPoint32A
CreateDIBSection
SetTextColor
SetBkMode
SetMapMode
LineTo
MoveToEx
SetROP2
ExtTextOutA
RectInRegion
SelectObject
StartPage
GetBkColor
Polyline
RestoreDC
DeleteObject
CreateCompatibleDC

user32

GetSysColor
BeginDeferWindowPos
EnableWindow
MessageBoxA
EnumChildWindows
DialogBoxParamA
InvalidateRgn
DestroyWindow
FindWindowA
IsZoomed
DispatchMessageA
GetWindowPlacement
SetClassLongA
GetScrollInfo
IsIconic
CreateIconIndirect
ReleaseDC
ChildWindowFromPoint
CloseClipboard
WindowFromPoint
ClientToScreen
GetWindowRect
GetFocus
ShowWindowAsync
RegisterClassA
IsDialogMessageA
EmptyClipboard
KillTimer
GetKeyState
GetDlgItemTextA
EnableMenuItem
SetDlgItemTextA
LoadAcceleratorsA
PtInRect
EndDeferWindowPos
AppendMenuA
LoadImageA
SetPropA
GetWindowLongA
SetScrollInfo
GetDlgCtrlID
CreatePopupMenu
TrackPopupMenuEx
GetClassNameA
DeleteMenu
DrawMenuBar
PostMessageA
GetDC
ScrollWindowEx
GetDoubleClickTime
CheckMenuItem
RegisterClassExA
IsDlgButtonChecked
SetUserObjectSecurity
GetSysColorBrush
GetMessageA
TrackPopupMenu
SetForegroundWindow
UnionRect
PeekMessageA
SetMenuItemInfoA
CallWindowProcA
SetClipboardData
MoveWindow
CreateDialogParamA
ModifyMenuA
SendMessageTimeoutA

msvcrt

_XcptFilter
__p__commode
_controlfp
exit
_except_handler3
__set_app_type
_initterm
__setusermatherr
_adjust_fdiv
_acmdln
memcpy
_exit
__getmainargs
__p__fmode

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d6e08a623c017e7de9dd2005b058149

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

msvcrt

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 180KB

.rsrc Size: 125KB - Virtual size: 124KB

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 180KB

.rsrc
Size: 125KB - Virtual size: 124KB