9268c0c63da6b22c79ed0e669fb75a48b8ae5891f6d718c7acce6992d6241f4f

Sharing

Copy URL Twitter E-mail

General

Target

9268c0c63da6b22c79ed0e669fb75a48b8ae5891f6d718c7acce6992d6241f4f
Size

477KB
MD5

6ea696e3bde0dbc595531a14561cc104
SHA1

57bf612d52233d74b320516d8c3fcd572d1591d2
SHA256

9268c0c63da6b22c79ed0e669fb75a48b8ae5891f6d718c7acce6992d6241f4f
SHA512

e34a4b387a8ec6d34008b6cdddc36584779976dcf7c0fdd87b57cdecfacdcdd09d6b693d84238cdad36827baaae499a4f5bdf079e97d97fea6814958982bfb95
SSDEEP

12288:8os7qQqssb7j5nYokuWnAkCveqEag7FHha1Xz:Ea9nYokucARl+7Ta1

Score

N/A

Malware Config

Signatures

Files

9268c0c63da6b22c79ed0e669fb75a48b8ae5891f6d718c7acce6992d6241f4f
.exe windows x86

0f9191ff6c4aeeabd07c31f9855959ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
HeapCreate
LoadLibraryA
GetTimeFormatA
GetStartupInfoW
InterlockedCompareExchange
GetCommandLineA
HeapReAlloc
GetCurrentProcess
FlushFileBuffers
SetHandleCount
GetStringTypeW
InterlockedExchange
ReadFile
TlsGetValue
lstrcpyW
GetTickCount
LeaveCriticalSection
TlsSetValue
lstrcmpiA
SetLastError
CloseHandle
InitializeCriticalSection
QueryPerformanceCounter
EnumResourceTypesW
GetUserDefaultLCID
GetLocaleInfoW
CreateMutexA
HeapFree
WideCharToMultiByte
HeapDestroy
VirtualQuery
GetModuleFileNameW
GetACP
VirtualProtect
GetCPInfo
GetLocaleInfoA
TlsFree
HeapValidate
GetTimeZoneInformation
ExitProcess
UnhandledExceptionFilter
VirtualAlloc
RtlUnwind
GetDateFormatA
IsBadWritePtr
GetStartupInfoA
RaiseException
IsValidLocale
GetStringTypeA
FreeEnvironmentStringsA
GetFileType
CompareStringW
DeleteCriticalSection
FreeEnvironmentStringsW
SetFilePointer
WriteFile
GetCommandLineW
LCMapStringW
WriteConsoleInputA
VirtualFree
GetStdHandle
GetEnvironmentStringsW
HeapSize
GetVersionExA
GetEnvironmentStrings
GetDiskFreeSpaceExW
TerminateProcess
GetOEMCP
MultiByteToWideChar
IsValidCodePage
WritePrivateProfileStringA
GetSystemInfo
EnterCriticalSection
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetCurrentThread
HeapAlloc
CompareStringA
GetProcAddress
OpenMutexA
SetStdHandle
GetCurrentThreadId
LCMapStringA
EnumSystemLocalesA
TlsAlloc

comctl32

InitCommonControlsEx

gdi32

Arc
RoundRect
SetTextAlign
SetBoundsRect
GetMetaFileBitsEx
GetFontLanguageInfo
CreateMetaFileA
EndPath
PaintRgn
RestoreDC
SetSystemPaletteUse
CreateICA
GetTextExtentPoint32W
AddFontResourceW
GetMetaFileW
GetDeviceGammaRamp
GetFontData
GetICMProfileW
GetTextAlign
GetTextExtentExPointW
CreateHatchBrush
ResizePalette
EnumFontFamiliesW
GetCharWidth32W

shell32

SHGetNewLinkInfo
DragQueryPoint
CheckEscapesW

user32

CascadeWindows
GetKeyboardLayout
CharNextW
GetSysColor
WINNLSEnableIME
OemToCharBuffA
RegisterClassA
FrameRect
OpenWindowStationW
RegisterClassExA

comdlg32

PrintDlgA
PageSetupDlgW
ChooseColorW

Sections

.text
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f9191ff6c4aeeabd07c31f9855959ba

Headers

File Characteristics

Imports

kernel32

comctl32

gdi32

shell32

user32

comdlg32

Sections

.text Size: 303KB - Virtual size: 302KB

.rdata Size: 60KB - Virtual size: 64KB

.data Size: 103KB - Virtual size: 103KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 303KB - Virtual size: 302KB

.rdata
Size: 60KB - Virtual size: 64KB

.data
Size: 103KB - Virtual size: 103KB

.rsrc
Size: 9KB - Virtual size: 9KB