19001d88ace027554c1a53e3b0b7030fc5a7d023fa4f848ff7811eee99bb0807

General

Target

19001d88ace027554c1a53e3b0b7030fc5a7d023fa4f848ff7811eee99bb0807
Size

264KB
MD5

04779ea376c73f19b714c74e3dfb72a7
SHA1

154341817652934d4dc650e7946839c76c1768da
SHA256

19001d88ace027554c1a53e3b0b7030fc5a7d023fa4f848ff7811eee99bb0807
SHA512

113f6602bda448fe0cff2027b37de78df712b7cc3f1d969476145e244582e123b1dd192f2d2117889062696540dbb6e2a8d5590f8d457cada95475d622000df9
SSDEEP

6144:x+ClqR9NJStyOKs8jV1uiNCCc4gFOJNrX5NQsl+Uhzp3I0R:xNy3JStyOKs8jLN+5FOJZ1ljhz1

Score

N/A

Malware Config

Signatures

Files

19001d88ace027554c1a53e3b0b7030fc5a7d023fa4f848ff7811eee99bb0807
.exe windows x86

65840956e05170290323c3b5855c5c88

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlGetPartW
PathCombineW
UrlCanonicalizeW
UrlCombineW
UrlApplySchemeW
PathAppendW

kernel32

HeapReAlloc
GetCurrentProcessId
HeapFree
GetACP
GetProcessHeap
GetStdHandle
UnhandledExceptionFilter
GetEnvironmentVariableA
WriteFile
lstrlenW
WideCharToMultiByte
SystemTimeToFileTime
GetModuleHandleA
LocalAlloc
InterlockedCompareExchange
HeapAlloc
GetStartupInfoA
GetSystemTime
CloseHandle
HeapDestroy
EnumResourceTypesW
LoadLibraryW
TerminateProcess
CreateProcessA
GetTickCount
MultiByteToWideChar
ResetWriteWatch
GetCurrentThreadId
GetLocaleInfoA
IsDebuggerPresent
Sleep
GetCurrentProcess
GetThreadLocale
GetSystemTimeAsFileTime
QueryPerformanceCounter
SetUnhandledExceptionFilter
InterlockedExchange
lstrlenA
RaiseException
HeapSize
HeapFree
CreateFileW
LoadLibraryExW
lstrcpynW

msimg32

TransparentBlt

wtsapi32

WTSUnRegisterSessionNotification
WTSQuerySessionInformationW
WTSEnumerateSessionsW
WTSFreeMemory
WTSRegisterSessionNotification

oleacc

LresultFromObject
AccessibleObjectFromEvent

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 203KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65840956e05170290323c3b5855c5c88

Headers

File Characteristics

Imports

shlwapi

kernel32

msimg32

wtsapi32

oleacc

Sections

.text Size: 57KB - Virtual size: 57KB

.rdata Size: 2KB - Virtual size: 141KB

.data Size: 203KB - Virtual size: 202KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 57KB - Virtual size: 57KB

.rdata
Size: 2KB - Virtual size: 141KB

.data
Size: 203KB - Virtual size: 202KB

.rsrc
Size: 512B - Virtual size: 4KB