fbbd0e976a460d1a26df4919c52c6dadce08b6f1148bce6a1185c3cd5c2e015d

Sharing

Copy URL Twitter E-mail

General

Target

fbbd0e976a460d1a26df4919c52c6dadce08b6f1148bce6a1185c3cd5c2e015d
Size

102KB
MD5

9c9046aec80a920dcf8eb78154ab30e0
SHA1

95afb1514fb9bfba758648765a3165f9ae53e944
SHA256

fbbd0e976a460d1a26df4919c52c6dadce08b6f1148bce6a1185c3cd5c2e015d
SHA512

b9c3d152d29089f391afdaa34afb999b71cda7bf601ffbad7723b048ca0a976c108a6f9df04b8eab9110188f4351cf0bab563018fc134d6b27828c152ac47582
SSDEEP

3072:K4ZlJ9sX8KzRvYADk00WImy6/UwPiyAfPCLL8VmY4Y/tV:K4f/s9mmyYiyAnCfdd2D

Score

N/A

Malware Config

Signatures

Files

fbbd0e976a460d1a26df4919c52c6dadce08b6f1148bce6a1185c3cd5c2e015d
.exe windows x86

8a1a9a196a9f5d96e4a4812504a8fd3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
CreateEventW
SetEvent
ResetEvent
UnmapViewOfFile
MapViewOfFile
IsBadWritePtr
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapAlloc
HeapCreate
HeapDestroy
GetProcessHeap
HeapReAlloc
HeapSize
HeapFree
GetUserDefaultLCID
FileTimeToSystemTime
CreateFileW
ReadFile
WriteFile
GetFileSize
SetEndOfFile
CloseHandle
DeleteFileA
GetPrivateProfileStringA
GetFileType
GetTempPathW
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
SetUnhandledExceptionFilter
GetTickCount
WideCharToMultiByte
GlobalLock
GetConsoleOutputCP
GetSystemInfo
CreateMutexA
ReleaseMutex
OpenMutexA
WriteConsoleA
GetVersion
VirtualProtect
SetLastError
GetACP
SetStdHandle
VirtualFree
FindFirstFileW
FindNextFileW
FindClose
LoadLibraryA
LoadLibraryW
GetProcAddress
GetSystemTimeAsFileTime
Sleep
CreateThread
GetCurrentThreadId
ResumeThread
SetThreadPriority
ExitThread
TerminateThread
DisableThreadLibraryCalls
CreateFileA
GetFullPathNameA
IsValidCodePage
lstrcmpiA
GetStringTypeExA
WaitForSingleObject
GetEnvironmentVariableA
SetFileAttributesW
GetStartupInfoA
GetCPInfo
FindFirstFileA
FindNextFileA
SystemTimeToFileTime
ExpandEnvironmentStringsA
EnumCalendarInfoA
VirtualAlloc
GetLocaleInfoA
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetOEMCP
GetSystemDirectoryW
FindResourceA
LoadResource
SizeofResource
LockResource
FreeResource
lstrcmpA
IsBadReadPtr
lstrcmpiW
GlobalReAlloc
QueryPerformanceCounter
MulDiv
GlobalFree
GetCurrentProcess
DeleteFileW
SetFileAttributesA
lstrcatA
SetThreadLocale
InterlockedExchange
GetLocaleInfoW
WritePrivateProfileStringA
LoadLibraryExA
RtlUnwind
RaiseException
LoadLibraryExW
GlobalHandle
GetCommandLineA
GetModuleHandleA
GlobalUnlock
GetTempPathA
GetLastError
GetSystemDefaultLCID
lstrlenW
GetLocalTime
IsDBCSLeadByte
CreateProcessW
GetFileAttributesA
lstrlenA
CompareFileTime
GetWindowsDirectoryA
GetVersionExW
GetDiskFreeSpaceA
GetModuleHandleW
GetEnvironmentStrings
GetDateFormatA
GetStringTypeW
GetEnvironmentStringsW
FormatMessageA
FreeEnvironmentStringsA
WaitForMultipleObjects
DuplicateHandle
LocalFree
FileTimeToLocalFileTime
LocalAlloc
GetModuleFileNameA
lstrcpyA
VirtualQuery
GetModuleFileNameW
FindResourceW
GetCurrentThread
GetVersionExA
SetFilePointer
TerminateProcess
LCMapStringA

msvcrt

fseek
strtok
swscanf
__getmainargs
signal
_mkdir
_utime
__setusermatherr
iswspace
strerror
strpbrk
_wcsicmp
fflush
_lseek
atol
__pioinfo
memset
_lock
wctomb
wcsrchr
puts
_errno
floor
_vsnprintf
isspace
_setjmp
setlocale
strncpy
_getcwd
tolower
_ismbblead
_strlwr
pow
_open_osfhandle
wcsstr
_setmode
_isatty
sscanf
_flsbuf
wcstombs
isleadbyte
_pipe
abort
localtime
_osver
fputs
wcsncpy
bsearch
_stricmp
_setjmp3
ftell
towupper
__mb_cur_max
_mktemp
_filelengthi64
exit
fgetpos
vsprintf
_adjust_fdiv
wcsncmp
_itow
getenv
__CxxFrameHandler
localeconv
_cexit
fopen
__p__environ
strchr
rand
isdigit
ctime
_write
strtoul
wcslen
strstr
_wcsnicmp
__set_app_type
strspn
__lc_codepage
malloc
iswctype
_get_osfhandle
ungetc
sqrt
_ultoa
_dup
calloc
swprintf
_kbhit
__p__commode
srand
strlen
__p__fmode
fprintf
toupper
strtol
atexit
remove
_chmod
strcspn
_wtoi
_amsg_exit
strcat
_wtol
_mbsrchr
_snprintf
_assert
strcmp
_getch
fsetpos
_getpid
_beginthreadex
rewind
_itoa
_dup2
_controlfp
_fstat
__p___initenv
_close
memcpy
fgets
_snwprintf
_CIpow
_mbsicmp
_strcmpi
printf
memmove
_strnicmp
__badioinfo
_XcptFilter
_fileno
_mbscmp
_exit
putchar
_initterm
wcscmp
_fullpath
free
strncat
wcstoul
fread
_unlock
fwrite
_iob
_wcsupr
_unlink
_strdup
strcpy
_ftol
memchr
_read
iswdigit
time
gmtime
rename
sprintf
memcmp
_purecall
strrchr
__dllonexit
atoi
wcscspn
atof
log
wcschr
fgetc
_CIsqrt
_wcslwr
perror
fclose
_putenv
towlower
_except_handler3
_umask
_pctype
isxdigit
_c_exit
_open
_wfopen
__initenv
strncmp
_filbuf
cos
clearerr
wcstol
_onexit
_lseeki64
qsort
_fdopen
fputc

user32

SystemParametersInfoA
IsWindow
FindWindowA
GetWindowRect
FrameRect
GetMessagePos
EmptyClipboard
IsDialogMessageA
DrawMenuBar
CheckMenuItem
EqualRect
IsWindowVisible
SetWindowLongA
SetTimer
PostQuitMessage
GetDlgItem
PostMessageA
SetRect
GetSystemMenu
SetWindowTextA
MessageBeep
wsprintfA
GetWindow
DrawEdge
GetScrollInfo
SendMessageA
WinHelpA
GetWindowThreadProcessId
GetDCEx
ReleaseCapture
SetClipboardData
OpenClipboard
GetClientRect
DestroyCursor
DispatchMessageA
GetDesktopWindow
LoadCursorA
InvalidateRect
LoadIconA
RegisterClipboardFormatA
EndPaint
CallNextHookEx
SetCapture
CreateWindowExA
FillRect
WindowFromPoint
GetCursorPos
DrawFrameControl
SetScrollPos
DrawIcon
SetWindowPlacement
GetActiveWindow
UnregisterClassA
SendDlgItemMessageA
TrackPopupMenu
GetClassInfoA
SetMenu
GetScrollRange
LoadBitmapA
EnumWindows
DestroyMenu
SetFocus
IsRectEmpty
GetMenuStringA
SetActiveWindow
IsWindowEnabled
IntersectRect
PeekMessageA
EnumThreadWindows
PtInRect
SetForegroundWindow
GetIconInfo
GetClassNameA
DestroyIcon
DefWindowProcA
CreatePopupMenu
KillTimer
GetWindowLongA
OffsetRect
WaitMessage
BeginPaint
SetScrollInfo
GetMenu
DrawTextA
GetSubMenu
GetMessageA
ClientToScreen
RegisterWindowMessageA
GetMenuItemCount
RemovePropA
InsertMenuA
ShowOwnedPopups
TranslateMessage
GetMenuState
SetWindowPos
SetScrollRange
IsChild
GetWindowDC
InsertMenuItemA
SetClassLongA
UnhookWindowsHookEx
CallWindowProcA
GetCapture
CreateMenu
OemToCharA
GetWindowTextA
UpdateWindow
SetPropA
DrawIconEx
GetWindowPlacement
SetCursor
GetFocus
GetSysColorBrush
GetLastActivePopup
LoadStringA
CharLowerA
GetMenuItemID
DeleteMenu
EnableMenuItem
CharNextA
CloseClipboard
RedrawWindow
IsZoomed
RemoveMenu
GetDC
ShowWindow
GetTopWindow
GetSysColor
ReleaseDC
GetScrollPos
SetWindowsHookExA
InflateRect
AdjustWindowRectEx
GetKeyboardType
GetForegroundWindow
MessageBoxA
GetSystemMetrics
DialogBoxParamA
ScrollWindow
GetPropA

Sections

.text
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a1a9a196a9f5d96e4a4812504a8fd3b

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 38KB - Virtual size: 37KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 49KB - Virtual size: 49KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 38KB - Virtual size: 37KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 49KB - Virtual size: 49KB

.rsrc
Size: 2KB - Virtual size: 4KB