f6dec3e90080418799406aaf1f3ae35e448374c36f0c888790307fe6be3f766e

Sharing

Copy URL Twitter E-mail

General

Target

f6dec3e90080418799406aaf1f3ae35e448374c36f0c888790307fe6be3f766e
Size

372KB
MD5

b1453e8dad772d9bd589a7ed3b9b2098
SHA1

0e61d3e31b7339a20453cd77a4471b45a870b14b
SHA256

f6dec3e90080418799406aaf1f3ae35e448374c36f0c888790307fe6be3f766e
SHA512

1e27c0820d15849ffe5ce13ac6498f415875671ee30d234addae01a758745b1c263aa8115d99ceb06253744184e7fc647dfaec7a57bebf4f7f9114c799e3ac72
SSDEEP

6144:Cn/J6Xt0rr2ss7jrT+A0vdaIArVxiyBb8fDukrEbU+dEaIQ1fmekC9nvKpjleYj8:Qx6XtCrlArV1B0DgA+dEaIQ1fmekC9nP

Score

N/A

Malware Config

Signatures

Files

f6dec3e90080418799406aaf1f3ae35e448374c36f0c888790307fe6be3f766e
.exe windows x86

a5da0d32814bfea2ee5ad2be0d0861fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
CloseHandle
WaitForSingleObject
ReleaseMutex
CreateThread
TerminateThread
ReadFile
CreateFileA
DeleteFileA
CreateDirectoryA
GetTickCount
FlushFileBuffers
LCMapStringW
LCMapStringA
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
Sleep
GetModuleHandleA
SetCurrentDirectoryA
GetModuleFileNameA
SetPriorityClass
SetThreadPriority
GetCurrentThread
GetCurrentProcess
SetProcessAffinityMask
GetLocalTime
FreeLibrary
LoadLibraryA
GetProcAddress
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
SetFilePointer
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
SetEndOfFile
EnterCriticalSection
InitializeCriticalSection
InterlockedExchange
DeleteCriticalSection
LeaveCriticalSection
GetLastError
MoveFileA
RtlUnwind
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
HeapFree
RaiseException
TerminateProcess
HeapReAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType

user32

LoadIconA
SendMessageA
DefWindowProcA
PostQuitMessage
ShowWindow
GetKeyState
SetForegroundWindow
BeginPaint
EndPaint
InvalidateRect
GetClientRect
GetMessageA
TranslateMessage
DispatchMessageA
RegisterClassExA
CreateWindowExA
IsIconic
SetTimer
DrawTextA
LoadCursorA
KillTimer

gdi32

SetTextColor
CreateSolidBrush
DeleteDC
BitBlt
GetTextMetricsA
SetBkMode
SelectObject
GetStockObject
DeleteObject
CreateFontA
CreateCompatibleDC
CreateCompatibleBitmap
Rectangle

wsock32

send
select
accept
inet_addr
htons
htonl
closesocket
socket
setsockopt
ioctlsocket
bind
listen
getsockname
connect
recv
WSAStartup

shell32

Shell_NotifyIconA

Exports

Exports

Module_GetInfo
Module_GetSubInfo
Module_SetChannel
Module_ShowOptionsDialog
Module_Start
Module_Stop

Sections

.text
Size: 220KB - Virtual size: 219KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 689KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lhuyspu
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a5da0d32814bfea2ee5ad2be0d0861fe

Headers

File Characteristics

Imports

kernel32

user32

gdi32

wsock32

shell32

Exports

Exports

Sections

.text Size: 220KB - Virtual size: 219KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 689KB

.data1 Size: 8KB - Virtual size: 5KB

.rsrc Size: 108KB - Virtual size: 108KB

lhuyspu Size: - Virtual size: 4KB

.text
Size: 220KB - Virtual size: 219KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 689KB

.data1
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 108KB - Virtual size: 108KB

lhuyspu
Size: - Virtual size: 4KB