422257616b391e3804e6d11b2fb59e1cd3b041da84c21a30a90c55c7e2d5a711

Sharing

Copy URL Twitter E-mail

General

Target

422257616b391e3804e6d11b2fb59e1cd3b041da84c21a30a90c55c7e2d5a711
Size

129KB
MD5

fd8181250d8cfb907d86267b56e48e04
SHA1

b866bade0ca1476ae254e230fba9dcfe9c1386c4
SHA256

422257616b391e3804e6d11b2fb59e1cd3b041da84c21a30a90c55c7e2d5a711
SHA512

fc15cf3af2bfa9180bbd25da2d0746d4229e742a30bc757516db0712991c966d227f20e598d4c4f4d900fce34451757218306abea9f4aabbc5f47e0ed09dcc1b
SSDEEP

1536:IsbCDvVvrNPPqdyTqByuhiZdsH4Romu/9ac:IsuDwyT4ymiXO459c

Score

N/A

Malware Config

Signatures

Files

422257616b391e3804e6d11b2fb59e1cd3b041da84c21a30a90c55c7e2d5a711
.exe windows x86

4d7edc4746198c4c799ccb844a665ac0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
OffsetRect
UnionRect
IsZoomed
GetSystemMetrics
PtInRect
BeginPaint
DrawFrameControl
EndPaint
SetPropW
CallWindowProcW
DefWindowProcW
GetClientRect
CopyRect
GetWindowLongW
GetParent
ShowWindow
SetWindowLongW
GetKeyState
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetCursorPos
SetWindowPos
PostMessageW
SendMessageW
MessageBoxW
EndDialog
GetDlgItem
GetWindowRect
MoveWindow
SetDlgItemTextW
LoadCursorW
EnableWindow

gdi32

SetMapMode
GetDeviceCaps
GetTextExtentPoint32W
ExtTextOutW
SetTextAlign
RestoreDC
Rectangle
CreatePen
SetROP2
SaveDC
CreateCompatibleBitmap
LineTo
MoveToEx
GetTextMetricsW
Polyline
CreateFontIndirectW
StartDocW

kernel32

IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSectionAndSpinCount
LoadLibraryA
HeapAlloc
UnhandledExceptionFilter
TerminateProcess
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
IsDebuggerPresent
ConvertFiberToThread
GetLastError
GetCommTimeouts
SetProcessShutdownParameters
CreateJobSet
CreateTimerQueue
GetWriteWatch
GetStdHandle
CancelIo
GetEnvironmentStrings
GetPriorityClass
RemoveVectoredExceptionHandler
LocalShrink
GetThreadPriorityBoost
TlsGetValue
GetFileInformationByHandle
MapUserPhysicalPages
PrepareTape
CreateMemoryResourceNotification
PostQueuedCompletionStatus
SetHandleCount
GetCurrentThreadId
GetThreadTimes
EscapeCommFunction
LocalCompact
SetHandleInformation
SetProcessWorkingSetSize
GetNamedPipeInfo
AreFileApisANSI
FlushFileBuffers
GetVersion
ReplaceFileA
EncodeSystemPointer
GetMailslotInfo
SetCommState
FreeEnvironmentStringsA
ReleaseMutex
GetTapeParameters
GetNumaAvailableMemoryNode
GetProcessWorkingSetSize
ReadFileScatter
GetExitCodeThread
PeekNamedPipe
BindIoCompletionCallback
GetProcessTimes
GlobalGetAtomNameW
CheckRemoteDebuggerPresent
AssignProcessToJobObject
FreeResource
GetCommandLineA
SetPriorityClass
ResetWriteWatch
ClearCommError
GetProcessId
GetThreadIOPendingFlag
RequestDeviceWakeup
SetTapePosition
IsProcessInJob
EncodePointer
GetNamedPipeHandleStateA
GetCurrentProcess
GlobalUnfix
GetModuleFileNameW
GetThreadSelectorEntry
ResetEvent
GetThreadContext
GetEnvironmentStringsW
GetFileTime
FindFirstFileExW
TransmitCommChar
SetProcessPriorityBoost
CreateFileMappingW
OpenProcess
GlobalDeleteAtom
GetCurrentProcessId
ConvertThreadToFiber
CreateFiber
SetFilePointerEx
FindVolumeClose
QueueUserAPC
SetFileApisToANSI
ReleaseSemaphore
QueryInformationJobObject
TlsSetValue
SetMailslotInfo
GetDevicePowerState
SetTapeParameters
RequestWakeupLatency
GetProcessIoCounters
GetProcessPriorityBoost
SetLastError
GlobalUnWire
SetInformationJobObject
GlobalCompact
GlobalUnlock
GetComputerNameExW
FormatMessageA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
CreateFileA
GetTimeZoneInformation
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetFileType
DeleteCriticalSection
TlsAlloc
TlsFree
InterlockedIncrement
InterlockedDecrement
HeapCreate

Sections

.text
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d7edc4746198c4c799ccb844a665ac0

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 38KB - Virtual size: 37KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 53KB - Virtual size: 60KB

.rsrc Size: 26KB - Virtual size: 25KB

.text
Size: 38KB - Virtual size: 37KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 53KB - Virtual size: 60KB

.rsrc
Size: 26KB - Virtual size: 25KB