dd9fbffb77b3fc2f3c16f784aac7d7ae030babccd75725e1f3c1baadde61947a

Sharing

Copy URL Twitter E-mail

General

Target

dd9fbffb77b3fc2f3c16f784aac7d7ae030babccd75725e1f3c1baadde61947a
Size

1.4MB
MD5

3bad7a78567009e47ec35b71b37386d4
SHA1

5c61726daa169f4d8f588572845e390266a60304
SHA256

dd9fbffb77b3fc2f3c16f784aac7d7ae030babccd75725e1f3c1baadde61947a
SHA512

97f5adb09f744e071a61291e6d81c71bca463a4155438bd479fcea49ac53221e9376fd0c8ed7ed10cf873e1a1ddd47e102fa77c64a5117813641dd4b4a466f7b
SSDEEP

24576:I+kH9xD4O+FuCDRyKJJ47zY0vsdb5+0NU7Vg9XtzLh9AjK6i9KzkuexQIzX:fS9xYuI5XlvxtzL4Y9KzkMIz

Score

N/A

Malware Config

Signatures

Files

dd9fbffb77b3fc2f3c16f784aac7d7ae030babccd75725e1f3c1baadde61947a
.exe windows x86

b403935c9e52669661523b0e1a7126aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
FindAtomA
GetStartupInfoA
SetVolumeLabelA
FindClose
SetCalendarInfoA
CreateNamedPipeW
GetAtomNameA
CommConfigDialogW
GetBinaryTypeA
RtlUnwind
GetPrivateProfileSectionA
EnumSystemLanguageGroupsW
DnsHostnameToComputerNameW
GetVolumePathNameA
RtlFillMemory
_lopen
DosDateTimeToFileTime
EnumDateFormatsExA
GetLogicalDriveStringsA
FindFirstFileW
ContinueDebugEvent
ReplaceFileA
_lread
LCMapStringW
Sleep
LocalLock
GetACP
CreateEventA
GetCalendarInfoA
OpenWaitableTimerW
GetLongPathNameA
EnumUILanguagesW
OpenFileMappingA
SetHandleCount
_lwrite
GetOEMCP
CreateEventW
SetSystemTimeAdjustment
GetProcessAffinityMask

user32

GetSysColor
EndPaint
CharNextW
SystemParametersInfoW
IsWindow
SetCursor
ShowWindow
GetSysColorBrush
DestroyWindow
GetWindowTextLengthW
GetFocus
PostMessageW
UpdateWindow
GetScrollInfo
GetActiveWindow
GetWindowTextW
GetDlgItem
wsprintfW
GetNextDlgTabItem
GetPropW
SetScrollInfo
GetDC
DefWindowProcW
ReleaseDC
EndDialog
MoveWindow
SetWindowPos
InvalidateRect
SendDlgItemMessageW
GetWindowRect
EnableWindow
GetWindow
DialogBoxIndirectParamW
SetDlgItemTextW
MessageBoxW
GetDesktopWindow
GetKeyboardLayoutNameW
FillRect
ClientToScreen

advapi32

LookupPrivilegeValueW
RegCreateKeyExW
RegOpenKeyExA
RegSetValueExW
RegSetValueW
RegFlushKey
RegRestoreKeyW
RegUnLoadKeyW
RegEnumKeyW
RegConnectRegistryW
RegLoadKeyW
RegCloseKey
AdjustTokenPrivileges
LookupAccountNameW
RegDeleteKeyW
RegSetValueExA
RegDeleteValueW
RegEnumValueW
RegCreateKeyW

Sections

.text
Size: 474KB - Virtual size: 474KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 478KB - Virtual size: 993KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 487KB - Virtual size: 486KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 470B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b403935c9e52669661523b0e1a7126aa

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 474KB - Virtual size: 474KB

.data Size: 478KB - Virtual size: 993KB

.edata Size: 512B - Virtual size: 388B

.rdata Size: 3KB - Virtual size: 2KB

.rsrc Size: 487KB - Virtual size: 486KB

.reloc Size: 1KB - Virtual size: 4KB

.idata Size: 512B - Virtual size: 470B

.text
Size: 474KB - Virtual size: 474KB

.data
Size: 478KB - Virtual size: 993KB

.edata
Size: 512B - Virtual size: 388B

.rdata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 487KB - Virtual size: 486KB

.reloc
Size: 1KB - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 470B