3a57c205651a01066acaadf8b50bf472756467205714beae58882ab13fb780f9

Sharing

Copy URL Twitter E-mail

General

Target

3a57c205651a01066acaadf8b50bf472756467205714beae58882ab13fb780f9
Size

810KB
MD5

9ba912294a83499f88dd71de2b38bbf1
SHA1

4b6ed55b883a205386b36d7fe4b00da834ffbce9
SHA256

3a57c205651a01066acaadf8b50bf472756467205714beae58882ab13fb780f9
SHA512

7b2f0ffd56e941d5404bc17ef4b90bf38e6eefb6c189d735ba319e1c9991ff9ec90543aec3a8ab54e1d207bac88f606b58a3d89419fcba4d98989abce98d6b1e
SSDEEP

12288:jbnRVFGMy+XYSam4FFjS1B6WsYZBez9yeLYiOm8g+WaKXdqLf/7h:nnzsMyEYW4FFiB6WJXezSiGkaXLfT

Score

N/A

Malware Config

Signatures

Files

3a57c205651a01066acaadf8b50bf472756467205714beae58882ab13fb780f9
.exe windows x86

cfcef791a24414cb599684c456f007d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptCreateHash

kernel32

FindResourceA
LeaveCriticalSection
GetUserDefaultLCID
IsValidCodePage
InterlockedIncrement
GetCommandLineW
ReadConsoleW
GetModuleHandleW
GetSystemTimeAsFileTime
GetStartupInfoA
VirtualProtectEx
SetThreadContext
VirtualFree
ReadFile
GetStdHandle
GetLocaleInfoW
ReadFileEx
LoadLibraryA
WriteConsoleW
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetConsoleCP
SetLastError
SystemTimeToFileTime
MoveFileA
TlsAlloc
TlsFree
GetOEMCP
GetCPInfo
GetWindowsDirectoryW
InterlockedExchange
GetNamedPipeHandleStateW
EnumSystemLocalesA
GetCommandLineA
TlsGetValue
GetProfileIntA
GetFileType
HeapCreate
GetModuleHandleA
CreateFileMappingA
ContinueDebugEvent
GetCurrentThreadId
GlobalGetAtomNameA
GetModuleFileNameW
GetCurrentThread
EnumCalendarInfoW
GetLocaleInfoA
UnhandledExceptionFilter
SetCurrentDirectoryA
VirtualQuery
EnumCalendarInfoA
MoveFileExA
LCMapStringW
SetVolumeLabelA
HeapDestroy
GetTimeFormatA
ExitProcess
GetLastError
GetACP
GetConsoleMode
DeleteCriticalSection
EnterCriticalSection
TlsSetValue
LCMapStringA
LocalFree
CompareStringW
FindFirstFileA
FreeEnvironmentStringsW
ResumeThread
GetEnvironmentStringsW
RtlUnwind
GetThreadTimes
SetHandleCount
HeapSize
GetStringTypeA
Sleep
IsDebuggerPresent
GetProcAddress
GetModuleFileNameA
GetDateFormatA
FreeLibrary
InterlockedDecrement
CompareStringA
GetPrivateProfileStructA
OpenMutexA
SetConsoleCtrlHandler
SetFilePointer
GetStartupInfoW
GetTickCount
SetConsoleActiveScreenBuffer
SetStdHandle
HeapLock
GetCalendarInfoA
WideCharToMultiByte
SetConsoleTitleA
OutputDebugStringA
HeapAlloc
SetConsoleTitleW
GetUserDefaultLangID
QueryPerformanceCounter
WriteConsoleA
SetEnvironmentVariableA
TerminateProcess
HeapFree
GetStringTypeW
GetCurrentProcess
GetCurrentProcessId
CreateFileA
ReadConsoleInputA
CreateMutexA
CloseHandle
HeapReAlloc
GetConsoleOutputCP
GetPrivateProfileSectionW
MultiByteToWideChar
WriteFile
VirtualAlloc
IsValidLocale
FlushFileBuffers
InitializeCriticalSectionAndSpinCount

comctl32

ImageList_EndDrag
ImageList_DrawEx
ImageList_GetFlags
InitCommonControlsEx
ImageList_Read
ImageList_GetImageInfo
GetEffectiveClientRect
CreatePropertySheetPageA
MakeDragList
CreatePropertySheetPageW
ImageList_SetFlags
ImageList_Draw
ImageList_DragShowNolock
CreateUpDownControl

user32

SetDoubleClickTime
SendIMEMessageExW
DdeDisconnect
DefWindowProcA
IsChild
EnumDesktopsA
BlockInput
GetPropW
CreateWindowExA
ValidateRgn
DefWindowProcW
DispatchMessageW
HideCaret
ShowWindow
BroadcastSystemMessage
IsWindow
SetScrollRange
SetDlgItemTextW
RegisterClassExA
CloseWindow
CreateDesktopW
DdeInitializeW
EmptyClipboard
GetUserObjectInformationW
LockWindowUpdate
EnumPropsExW
OemKeyScan
GetDlgItemTextW
SetUserObjectSecurity
SetWindowRgn
DdeUnaccessData
MessageBoxA
DestroyWindow
RegisterClassA
RegisterClipboardFormatW

Sections

.text
Size: 220KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 407KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 137KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfcef791a24414cb599684c456f007d2

Headers

File Characteristics

Imports

advapi32

kernel32

comctl32

user32

Sections

.text Size: 220KB - Virtual size: 220KB

.rdata Size: 407KB - Virtual size: 407KB

.data Size: 137KB - Virtual size: 141KB

.rsrc Size: 43KB - Virtual size: 43KB

.text
Size: 220KB - Virtual size: 220KB

.rdata
Size: 407KB - Virtual size: 407KB

.data
Size: 137KB - Virtual size: 141KB

.rsrc
Size: 43KB - Virtual size: 43KB