9b877f4fd3d4aa077c070ea8abd66562bf91c6ece15991543e7dfbb1c5d8ae11

Sharing

Copy URL

Twitter E-mail

General

Target

9b877f4fd3d4aa077c070ea8abd66562bf91c6ece15991543e7dfbb1c5d8ae11
Size

127KB
MD5

116aad38e1cf8b075eceb6bcd9ebc668
SHA1

aa94dcba43c0799a56e533d0529d18cc2783b17c
SHA256

9b877f4fd3d4aa077c070ea8abd66562bf91c6ece15991543e7dfbb1c5d8ae11
SHA512

82ff1b7cbbe7180602f17cdf8375842588b3adc5d9d684ae039d88ed9f7d36e2d102cd935f6392a5e67730b7598512737284267e3bdcf827884776490c0448f0
SSDEEP

3072:bNgvbVcnXC6pQw6bPucRkbFyVOfEgcBCFEJyCa7UaqlFfcPc:0bV0n+w6bPuLFyj7jlMc

Score

N/A

Malware Config

Signatures

Files

9b877f4fd3d4aa077c070ea8abd66562bf91c6ece15991543e7dfbb1c5d8ae11
.exe windows x86

a6a3e504826b201c1dee9d56008ee78e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
TlsAlloc
WriteConsoleW
ReadFile
SetEndOfFile
SetStdHandle
FlushFileBuffers
HeapReAlloc
LoadLibraryW
GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
LCMapStringW
CreateFileW
CloseHandle
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetStdHandle
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetLastError
EnumDateFormatsA
GetDefaultCommConfigA
Sleep
DeleteCriticalSection
lstrcatA
lstrlenA
HeapCreate
WideCharToMultiByte
GlobalAlloc
FormatMessageA
GetProcessHeap
SetEvent
GetFileType
SetHandleCount
GetModuleFileNameW
WriteFile
ExitProcess
IsProcessorFeaturePresent
GetProcAddress
GetCurrentThreadId
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedIncrement
GetCPInfo
TerminateProcess
IsDebuggerPresent
GetCurrentProcess
InterlockedDecrement
HeapAlloc
GetTickCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
MultiByteToWideChar
HeapFree
EnterCriticalSection
LeaveCriticalSection
GetLocalTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
RtlUnwind
EncodePointer
DecodePointer
InitializeCriticalSectionAndSpinCount
TlsGetValue

user32

AdjustWindowRectEx
DispatchMessageA
IsWindow
GetSystemMetrics
WindowFromDC
CreateDialogParamW
IsDlgButtonChecked
IsWindowVisible
GetDlgItemTextA
EnableScrollBar
SendDlgItemMessageW
EndDialog
RegisterClassExA
GetClassInfoExA
GetFocus
LoadBitmapA
GetParent
FindWindowW
GetClientRect
SendMessageA
GetDC
TranslateMessage
SetRect
SetWindowLongA
MessageBoxA
InvalidateRect
CreateWindowExA
PeekMessageA
GetClassNameW
EnableMenuItem
GetDlgItem

gdi32

DeleteObject
AddFontResourceA
GetBkMode
CreateDIBSection

winspool.drv

ord201

advapi32

GetTokenInformation
LookupAccountSidA
RegQueryValueExW
ConvertStringSidToSidW
RegCloseKey
RegOpenKeyExW
OpenProcessToken

shell32

Shell_NotifyIconA
SHGetFileInfoW

ole32

CoCreateInstance
CoSetProxyBlanket
CoUninitialize
StringFromCLSID
CoInitializeSecurity
CoInitialize
CoGetObjectContext
CoInitializeEx
CreateFileMoniker

oleaut32

GetErrorInfo
VariantClear
SysAllocString
VariantInit
SysFreeString

comctl32

ImageList_Create
ImageList_Add
ord17

oleacc

AccessibleObjectFromWindow

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6a3e504826b201c1dee9d56008ee78e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

oleacc

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 20KB - Virtual size: 20KB

.data Size: 11KB - Virtual size: 18KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 20KB - Virtual size: 20KB

.data
Size: 11KB - Virtual size: 18KB

.rsrc
Size: 5KB - Virtual size: 5KB