b9ffd3ec8f6673dbd118e66c4fb2765d1800d6b42f29297c4e42f0e42ccbf67a

Sharing

Copy URL Twitter E-mail

General

Target

b9ffd3ec8f6673dbd118e66c4fb2765d1800d6b42f29297c4e42f0e42ccbf67a
Size

162KB
MD5

51aa7476adb81fe595ebd0cd976a7e00
SHA1

4afbc21d8e9f1e10172e9eab2c2ad2e33de2d957
SHA256

b9ffd3ec8f6673dbd118e66c4fb2765d1800d6b42f29297c4e42f0e42ccbf67a
SHA512

04affcb0f69362ac43fc7bf3d54113ae0542d1445d8059e7317ad80e238595c554f79e5cd06f17ab4f0a4f93dfce69953d2be232645d403cfacb2714ac825e1c
SSDEEP

3072:Ba4LTcdC4paDlyCXHIBqZMa6Y0brrAdReXF1WvO3n/AeGwcfSqfIqX:04LTn8+yE/ZMa6frAqXqWPxGwc3fr

Score

N/A

Malware Config

Signatures

Files

b9ffd3ec8f6673dbd118e66c4fb2765d1800d6b42f29297c4e42f0e42ccbf67a
.exe windows x86

27b2a158f10c82c0fef8862de7b9c27a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetProfileStringW
LoadLibraryW
GetSystemDefaultLCID
SetConsoleHardwareState
ZombifyActCtx
FreeEnvironmentStringsW
AddConsoleAliasA
AddLocalAlternateComputerNameA
DebugSetProcessKillOnExit
TransactNamedPipe
GetNativeSystemInfo
GetPrivateProfileSectionW
GlobalUnfix
SetThreadContext
LocalAlloc
FindFirstFileExW
BackupRead
GetStartupInfoW
GlobalGetAtomNameW
lstrlen
GlobalCompact
GetDiskFreeSpaceExW
UnregisterWaitEx
GetCPInfo
GetBinaryTypeA
CommConfigDialogA

polstore

IPSecCopyFilterData
IPSecCopyNegPolData
IPSecCopyAuthMethod
IPSecImportPolicies
IPSecGetAssignedPolicyData
IPSecSetFilterData
IPSecDeleteFilterData
IPSecSetPolicyData
IPSecDeleteISAKMPData

olecli32

DefCreateFromClip
OleGetLinkUpdateOptions
OleEnumObjects
WEP
OleQueryCreateFromClip
LeUpdate
ErrQueryOpen
OleRequestData
BmChangeData
OleIsDcMeta
SetNextNetDrive
LeEnumFormat
ErrExecute
OleCreateLinkFromFile
OleQuerySize
LeReconnect
LeSetUpdateOptions
OleRevertClientDoc
ObjQueryName
MfGetData
OleQueryOutOfDate
DibClone
BmRelease
ErrSetUpdateOptions
LeChangeData

winscard

SCardIntroduceReaderA
SCardControl
SCardListInterfacesA
SCardBeginTransaction
SCardGetStatusChangeA
SCardConnectW
SCardGetAttrib
SCardForgetReaderGroupW
SCardFreeMemory
SCardGetCardTypeProviderNameA
SCardGetProviderIdA
SCardIntroduceCardTypeA
SCardCancel
SCardIntroduceReaderGroupA
SCardReleaseStartedEvent
SCardListReaderGroupsA
SCardIntroduceReaderW
SCardTransmit
SCardRemoveReaderFromGroupW
SCardListReaderGroupsW
SCardGetCardTypeProviderNameW

gdi32

UpdateColors
GetCharABCWidthsA
SetPaletteEntries
StartDocA
CloseMetaFile
GdiGetPageHandle
EngGetCurrentCodePage
SetICMProfileA
DdEntry33
EngLineTo
GetFontAssocStatus
EngStretchBltROP
PlayMetaFileRecord
GetDeviceCaps
EngCreateSemaphore
GetCharWidth32A
DdEntry16
GdiConvertToDevmodeW

msvcrt

memmove
_abnormal_termination
_ismbstrail
__set_app_type
__p__wcmdln
_set_SSE2_enable
_ctype
frexp
_amsg_exit
wcsrchr
log10
_strnicmp
__getmainargs
_wcsset
exit
fwscanf
_adj_fprem1
_lrotr
__p__commode
_mbctohira
___mb_cur_max_func
puts
_sleep

imm32

ImmLockImeDpi
ImmIsIME
ImmIMPGetIMEW
ImmRegisterWordW
ImmAssociateContext
ImmGetVirtualKey
ImmNotifyIME
ImmSendIMEMessageExW
ImmGetDefaultIMEWnd
ImmEnumRegisterWordA
ImmWINNLSEnableIME
ImmGetCompositionFontA
ImmGetRegisterWordStyleA
ImmEscapeA

user32

DefWindowProcW
PostQuitMessage
RegisterClassW

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 46B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27b2a158f10c82c0fef8862de7b9c27a

Headers

File Characteristics

Imports

kernel32

polstore

olecli32

winscard

gdi32

msvcrt

imm32

user32

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 16KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 46B

.data Size: 27KB - Virtual size: 27KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 16KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 46B

.data
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 1KB - Virtual size: 1KB