62b00f08bb0778a064a2cf32dc422e15e65c032c9645c395228ff14b85288dbd

Sharing

Copy URL

Twitter E-mail

General

Target

62b00f08bb0778a064a2cf32dc422e15e65c032c9645c395228ff14b85288dbd
Size

82KB
MD5

391f2a8bd9f95e0bdfd8ef23386e4f07
SHA1

f8ffa4f4aefcf0556e2d1d882aec561820eb9c5f
SHA256

62b00f08bb0778a064a2cf32dc422e15e65c032c9645c395228ff14b85288dbd
SHA512

5cb258c59b5cd2bcd8bb571277690eace25301816c1227efa87712a92f0acf8b704c3cee78a0e699623f71561029cf2eb56fb809bb458cef4868a585c48b5d26
SSDEEP

1536:iCxLLuMfyI3G+0c2ySZ4PrW/goiCnsBrgn7i3UCVFs9K8RUCRePyBbYa5ewxt:iqLLuz+0ISZ4PyggsBcnu3hVehHBbYaF

Score

N/A

Malware Config

Signatures

Files

62b00f08bb0778a064a2cf32dc422e15e65c032c9645c395228ff14b85288dbd
.exe windows x86

55ab7bece1c23be396c7237a658483c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance

gdi32

SetViewportOrgEx
DPtoLP
CreateSolidBrush
SetBkColor
ExtTextOutA
ModifyWorldTransform
GetDeviceCaps
RestoreDC
GetObjectA
BitBlt
SetGraphicsMode
CreateCompatibleDC
DeleteObject
CreateFontIndirectA
SetTextColor
SelectObject
DeleteDC
GetTextMetricsA
SetWindowOrgEx
SaveDC

advapi32

RegEnumKeyExA
RegCloseKey
RegQueryValueExA
RegDeleteKeyA
RegOpenKeyExA
RegSetValueExA
RegEnumValueA

kernel32

lstrcmpiA
LocalAlloc
lstrlenA
GetModuleFileNameA
LoadLibraryA
GetTickCount
FreeLibrary
HeapSize
HeapAlloc
lstrcmpA
GetModuleHandleA
lstrcpynA
VirtualAlloc
SetEvent
lstrcatA
HeapFree
LocalFree
CreateFileA
GetProcessHeap
CloseHandle
GetDiskFreeSpaceA
GetProcAddress
CreateEventA
DisableThreadLibraryCalls
InterlockedDecrement
InterlockedIncrement
CreateThread
InitializeCriticalSection
GetWindowsDirectoryA
HeapReAlloc
GetSystemDirectoryA
lstrcpyA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

advpack

RegInstall

ntdll

NtAddAtom

user32

SetWindowLongA
DrawTextA
PeekMessageA
TranslateMessage
GetDC
GetClientRect
IsDlgButtonChecked
GetWindowTextA
DestroyIcon
LoadImageA
ReleaseDC
DialogBoxParamA
GetDlgItem
LoadStringA
ShowWindow
LoadBitmapA
MessageBoxA
CheckDlgButton
EnableWindow
SetDlgItemTextA
GetSysColor
SendDlgItemMessageA
CreateDialogParamA
InvalidateRect
DestroyWindow
CharPrevA
SetWindowPos
GetWindowRect
SendMessageA
CharUpperA
MsgWaitForMultipleObjects
GetWindowLongA
EndDialog
IsDialogMessageA
wsprintfA
DispatchMessageA
IsWindow
SetWindowTextA

atl

AtlMarshalPtrInProc

Sections

.textbss
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55ab7bece1c23be396c7237a658483c3

Headers

DLL Characteristics

File Characteristics

Imports

ole32

gdi32

advapi32

kernel32

version

advpack

ntdll

user32

atl

Sections

.textbss Size: - Virtual size: 1.2MB

.text Size: 512B - Virtual size: 424B

.idata Size: 79KB - Virtual size: 79KB

.rdata Size: 512B - Virtual size: 32B

.reloc Size: 1024B - Virtual size: 816B

.textbss
Size: - Virtual size: 1.2MB

.text
Size: 512B - Virtual size: 424B

.idata
Size: 79KB - Virtual size: 79KB

.rdata
Size: 512B - Virtual size: 32B

.reloc
Size: 1024B - Virtual size: 816B