f7454ef0023faf9ac319ef95c0dc99e84060db7bca2ec3778769d45ef8ea3ed9

Sharing

Copy URL

Twitter E-mail

General

Target

f7454ef0023faf9ac319ef95c0dc99e84060db7bca2ec3778769d45ef8ea3ed9
Size

723KB
MD5

3184d45c1bb061f8c1d1aa33b1589af1
SHA1

e89858a93ad1e4553b9759a621d051a16385a848
SHA256

f7454ef0023faf9ac319ef95c0dc99e84060db7bca2ec3778769d45ef8ea3ed9
SHA512

415280e60b60f36f0c5d50d9b79e22f04bb91bfa265abea86fc73f01e5f5e4fba5a5325b401c236bcda00a6c2c4d79b85669c48659adffe757f49e67029366e8
SSDEEP

12288:h8INhSGjMnZdUZRAawpgBSthNw5x9uG/fMvQTQgNSQAR:OZGYZdwzcHtLwX9ugfMvQUgQb

Score

N/A

Malware Config

Signatures

Files

f7454ef0023faf9ac319ef95c0dc99e84060db7bca2ec3778769d45ef8ea3ed9
.exe windows x86

c3ddb619e99ea2879662f59c357d443e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteProfileStringW
ResetEvent
WaitForSingleObject
GetProfileIntW
GlobalAlloc
LoadLibraryA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetProcAddress
GlobalLock
SetEvent
GetStartupInfoA
Sleep
lstrcpyW
CloseHandle
GetModuleHandleA
IsDebuggerPresent

netapi32

NetMessageNameAdd

user32

HideCaret
SetMenu
GetProcessDefaultLayout
IsChild
GetDlgCtrlID
TrackPopupMenuEx
MessageBoxW
SetWindowLongW
CheckMenuRadioItem
CheckMenuItem
ScreenToClient
WinHelpW
GetClipboardData
GetWindowLongW
ChildWindowFromPoint
TranslateMessage
SetWindowTextW
EndDialog
SetFocus
SystemParametersInfoW
GetWindowTextW
CreateDialogParamW
GetDlgItem
EnableMenuItem
GetSubMenu
GetClientRect
PostQuitMessage
MapWindowPoints
GetWindowRect
LoadIconW
EnableWindow
SetDlgItemInt
IsClipboardFormatAvailable
LoadMenuW
ShowWindow
GetSysColor
SetWindowPos
SendMessageW
LoadAcceleratorsW
TranslateAcceleratorW
CharNextW
OpenClipboard
DestroyWindow
CallWindowProcW
DispatchMessageW
DestroyMenu

gdi32

GetTextMetricsA
SetBkColor
PolyTextOutA

setupapi

SetupGetNonInteractiveMode
SetupSetNonInteractiveMode

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

rpcrt4

RpcServerUseAllProtseqsEx

Sections

.text
Size: 631KB - Virtual size: 631KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3ddb619e99ea2879662f59c357d443e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

netapi32

user32

gdi32

setupapi

advapi32

rpcrt4

Sections

.text Size: 631KB - Virtual size: 631KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 24KB - Virtual size: 1.9MB

.rsrc Size: 15KB - Virtual size: 15KB

.reloc Size: 45KB - Virtual size: 44KB

.text
Size: 631KB - Virtual size: 631KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 24KB - Virtual size: 1.9MB

.rsrc
Size: 15KB - Virtual size: 15KB

.reloc
Size: 45KB - Virtual size: 44KB