19532c52ab65850292de21cd7bfa84e81e615a7125993b42344c78dfec05ec49

Sharing

Copy URL Twitter E-mail

General

Target

19532c52ab65850292de21cd7bfa84e81e615a7125993b42344c78dfec05ec49
Size

436KB
MD5

feb5153fb9310659477e38eb831cd957
SHA1

a4dcdc9a1dfc89183342d7b6199fce6d05c9a32f
SHA256

19532c52ab65850292de21cd7bfa84e81e615a7125993b42344c78dfec05ec49
SHA512

0de623864e21a2d7372d15f4438b3e34ae1ec3bbfd677b1dee6fff209f1d0af67cae704117c7c50068ff2d9cfed7ce76e9a21b9bd6cf4464b890c28dce2330e3
SSDEEP

6144:qFGmW6OkGqFFT1rVQRAeDcFSh1EzKJxEVMhGb7C2DfxSlUoRQY5rPnuLP2q:qFGm5wRAFS7BJxEVMhT8ZwjCus3

Score

N/A

Malware Config

Signatures

Files

19532c52ab65850292de21cd7bfa84e81e615a7125993b42344c78dfec05ec49
.exe windows x86

f59868078601ccfa7d62f792de3f3c41

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEndOfFile
SetFilePointer
CopyFileA
SetLastError
GetSystemDefaultLCID
SetThreadAffinityMask
TlsGetValue
VirtualFree
ReleaseSemaphore
CreateSemaphoreA
HeapSize
WaitForSingleObjectEx
CreateEventA
GetCurrentThread
SetThreadPriority
FreeLibraryAndExitThread
GetVersionExA
LoadLibraryA
Sleep
GetSystemTimeAsFileTime
OpenMutexW
LockResource
FreeResource
GetProcessHeap
HeapFree
CreateEventW
WaitForSingleObject
ResetEvent
LoadResource
SizeofResource
lstrlenA
lstrcatW
GetModuleFileNameW
lstrcpynW
HeapDestroy
lstrcmpiW
FreeLibrary
DeleteCriticalSection
InitializeCriticalSection
GetLastError
GlobalFree
VirtualQuery
GetSystemInfo
VirtualProtect
CreateIoCompletionPort
WaitForMultipleObjects
RaiseException
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
QueryPerformanceCounter
GetModuleHandleA
GetProcAddress
FileTimeToSystemTime
CopyFileW
DeleteFileW
GetTempPathW
CloseHandle
LoadLibraryW
SystemTimeToFileTime
GetConsoleMode
GetConsoleScreenBufferInfo
MultiByteToWideChar
ReadConsoleW
GetModuleHandleW
GetFileType
WriteConsoleW
WriteFile
LocalFree
GetUserDefaultUILanguage
GetThreadLocale
SetThreadLocale
FindFirstFileW
FindNextFileW
HeapAlloc
GetStdHandle
ReplaceFileA
ExitThread
GetSystemTime
OutputDebugStringA
GlobalUnlock
GetLocalTime
GlobalLock
ReadFile
GetExitCodeProcess
OpenProcess
GetComputerNameW
QueryPerformanceFrequency
GetCommConfig
GetVersion
GetLocaleInfoA
SearchPathW
ExpandEnvironmentStringsW
GetTempFileNameW
GetWindowsDirectoryW
CompareFileTime
lstrcpyW
CreateFileW

user32

SetParent
LoadStringW
CharToOemW
GetWindowLongA
DefWindowProcA
DestroyWindow
CharPrevW
RegisterClassA

advapi32

RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyExA
DeregisterEventSource
ReportEventW
RegisterEventSourceW
IsTextUnicode
RegCreateKeyExA
RegEnumValueW
RegQueryInfoKeyW
RegSetValueExW
RegDeleteValueW
RegEnumKeyW
RegDeleteKeyA
RegQueryValueExW
RegCloseKey
RegQueryValueExA

ole32

CoTaskMemAlloc
CoUninitialize
CreateStreamOnHGlobal
CoCreateGuid
StringFromGUID2
CoTaskMemFree
CoInitialize
CLSIDFromString

version

VerQueryValueW
GetFileVersionInfoW

msvcrt

strncmp
wcstod
wcsncpy
wprintf
wcsstr
isalnum
isdigit
malloc
free
realloc
wcschr
wcscmp
calloc
wcspbrk
towlower
iswalpha
atoi
iswxdigit
gmtime
fwprintf
rand
strstr
tolower
isspace
sscanf
strpbrk
wcsftime
wcsncmp
swprintf
wcstoul
wcsrchr
srand
qsort
sprintf
strchr
strtoul
isxdigit
toupper
isalpha
strrchr
strcspn
strspn
wcslen
fclose
wcstok

ws2_32

WSAEventSelect
WSAEnumNetworkEvents

Sections

.text
Size: 352KB - Virtual size: 349KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pdata
Size: 4KB - Virtual size: 692B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f59868078601ccfa7d62f792de3f3c41

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

version

msvcrt

ws2_32

Sections

.text Size: 352KB - Virtual size: 349KB

.pdata Size: 4KB - Virtual size: 692B

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 464KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 352KB - Virtual size: 349KB

.pdata
Size: 4KB - Virtual size: 692B

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 464KB

.rsrc
Size: 40KB - Virtual size: 39KB