a89724348acc0da9923f1245da1f584cfcb7a23e77bad6f6b832a5cb6bea1c61

Sharing

Copy URL Twitter E-mail

General

Target

a89724348acc0da9923f1245da1f584cfcb7a23e77bad6f6b832a5cb6bea1c61
Size

241KB
MD5

3605122bfd0025885442c0760058493e
SHA1

7347dd88723a653a27b5eb794825c41de85a0a15
SHA256

a89724348acc0da9923f1245da1f584cfcb7a23e77bad6f6b832a5cb6bea1c61
SHA512

0c920ef4b4c54915bb4a34032e4bb786ad25f2ae26e95efc1621df4fe724e3ef599acaaaab6c72eefb30af2ad906271804334c7ea5a1889d66e5c08de21ca984
SSDEEP

6144:RiyHTXLnXE0U/6HVdCevyLR78cgZWFUaKZHM4CPhCCWG7Tdwo:nTLU0U/6HVA6yLF1gZWz4HM4CPhCvG7p

Score

N/A

Malware Config

Signatures

Files

a89724348acc0da9923f1245da1f584cfcb7a23e77bad6f6b832a5cb6bea1c61
.exe windows x86

a163f6195894618ddb9e106895de2d65

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatW
CloseHandle
GetCurrentProcessId
lstrcpyW
lstrcpyA
HeapReAlloc
WriteConsoleW
SetStdHandle
HeapSize
GetStringTypeW
LCMapStringW
RtlUnwind
MultiByteToWideChar
Sleep
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
LoadLibraryW
GetModuleHandleA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
GetStdHandle
HeapCreate
IsProcessorFeaturePresent
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineA
DecodePointer
LoadLibraryA
GlobalFree
VerLanguageNameA
GetProcAddress
SetLastError
GetLastError
GlobalUnlock
lstrlenW
CreateFileW
GetModuleFileNameW
GetVersionExW
FormatMessageW
CreateEventA
WideCharToMultiByte
GetEnvironmentVariableW
GlobalAlloc
OpenProcess
SetCommTimeouts
SetCommState
WriteFile
GetProcessHeap
WaitForSingleObject
GlobalLock
HeapFree
GetCurrentProcess
GetCommState
HeapAlloc
FreeLibrary
GetLocaleInfoA
GetFileSize
CreateFileA
SetupComm
ExitProcess
GetModuleHandleW
FlushFileBuffers

user32

RegisterClassA
LoadAcceleratorsW
GetWindowThreadProcessId
CheckMenuItem
DefWindowProcW
LoadCursorA
DestroyMenu
UpdateWindow
IsWindowVisible
GetSystemMetrics
MessageBoxW
DispatchMessageA
CreateWindowExW
DestroyWindow
GetMessageA
GetWindowRect
PostQuitMessage
SendDlgItemMessageA
FillRect
GetMenuItemID
LoadImageW
KillTimer
DrawTextA
GetSubMenu
DeleteMenu
LoadIconA
IsWindow
wsprintfA
FindWindowW
GetClientRect
CreateMenu
SendMessageA
GetDC
EnumDisplaySettingsA
GetForegroundWindow
GetMenu
SetWindowLongA
CreateWindowExA
ReleaseDC
EnableMenuItem
GetMenuState
GetDlgItem
DefWindowProcA
SetWindowPos
GetCursorPos
GetMenuStringA
ShowWindow
SetMenu
CreatePopupMenu
LoadBitmapW
AppendMenuA
GetMenuItemCount

gdi32

MoveToEx
BitBlt
LineTo
SetTextColor
MaskBlt
DeleteDC
CreateFontA
StretchBlt
SetBkColor
CreateBitmap
SetBkMode
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
SetStretchBltMode
CreatePen
GetPixel
GetObjectA
GetStockObject
CreateSolidBrush
GetDIBits

comdlg32

GetFileTitleW

advapi32

RegCloseKey
RegQueryInfoKeyA
RegCreateKeyExA
RegQueryValueExA
OpenSCManagerW
OpenProcessToken

shell32

SHGetFileInfoW
SHCreateDirectoryExW
SHGetFolderPathW

ole32

CoTaskMemAlloc
CreateBindCtx
CoInitialize
CoUninitialize

oleaut32

RegisterActiveObject

netapi32

NetUserEnum
NetApiBufferFree

msimg32

GradientFill

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

shlwapi

SHCreateStreamOnFileW

opengl32

glBitmap
glEndList
glNewList

wtsapi32

WTSQuerySessionInformationA
WTSFreeMemory

urlmon

CreateURLMoniker

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a163f6195894618ddb9e106895de2d65

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

netapi32

msimg32

version

shlwapi

opengl32

wtsapi32

urlmon

Sections

.text Size: 127KB - Virtual size: 126KB

.rdata Size: 94KB - Virtual size: 94KB

.data Size: 6KB - Virtual size: 13KB

.rsrc Size: 12KB - Virtual size: 151KB

.text
Size: 127KB - Virtual size: 126KB

.rdata
Size: 94KB - Virtual size: 94KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 12KB - Virtual size: 151KB