d00614c623a644c11525c79a2573116d09b9764fe0d763a501439f4705d6303e

Sharing

Copy URL Twitter E-mail

General

Target

d00614c623a644c11525c79a2573116d09b9764fe0d763a501439f4705d6303e
Size

936KB
MD5

9ef83efd32b222d79a7113c976a3a620
SHA1

a5e48b0c564776650525f9e99d9ffa5048650c90
SHA256

d00614c623a644c11525c79a2573116d09b9764fe0d763a501439f4705d6303e
SHA512

69568bebdc90fc89516462490f1790eef913a9a91aa896996db4ac21dcee09ecc7fb129121d01a352f192182a312c921596d2349302ab1c9d16c46f1213d974a
SSDEEP

24576:W3XaXwik2bI6vSb50bIKBDr59+atdeTD:lXwibZU5OIkD1nPe

Score

N/A

Malware Config

Signatures

Files

d00614c623a644c11525c79a2573116d09b9764fe0d763a501439f4705d6303e
.exe windows x86

336a6804342e951cb64af13213d0b42e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
ImageList_Write

user32

GetQueueStatus
SetPropA
ShowWindow
CharPrevW
SetWindowWord
InsertMenuItemA
SetActiveWindow
CascadeChildWindows
LookupIconIdFromDirectory
SetThreadDesktop
InvertRect
GetClassLongA
DdeAbandonTransaction
ToUnicodeEx
GetWindowTextLengthA
DefWindowProcW
RegisterClassExA
WindowFromDC
DefWindowProcA
DestroyWindow
CallMsgFilterW
BringWindowToTop
GetWindowRgn
CharNextA
MessageBoxA
HideCaret
OemToCharW
SendIMEMessageExA
SetWindowsHookW
TranslateAcceleratorA
EnumWindowStationsW
WINNLSGetEnableStatus
GetMessageExtraInfo
FindWindowExA
CharToOemBuffA
RegisterClassA
ImpersonateDdeClientWindow
CreateWindowExA
SetProcessDefaultLayout
DdeGetLastError
CascadeWindows

shell32

SHBrowseForFolderA
SHQueryRecycleBinW
SHGetDesktopFolder
SHFileOperationA
RealShellExecuteExW

wininet

InternetQueryDataAvailable
HttpCheckDavCompliance
RetrieveUrlCacheEntryStreamW
DeleteUrlCacheGroup

advapi32

InitiateSystemShutdownA
RegOpenKeyExW
LookupPrivilegeDisplayNameA
RegSetValueW
LookupPrivilegeNameW
CryptHashData

gdi32

EnumFontFamiliesExW
OffsetViewportOrgEx
ExtSelectClipRgn
GetCharABCWidthsFloatA
GetTextFaceA
CheckColorsInGamut
FixBrushOrgEx
CreateBrushIndirect
EnumICMProfilesA
RealizePalette
GetEnhMetaFileA
gdiPlaySpoolStream
LPtoDP
CreateScalableFontResourceW
PaintRgn

kernel32

LeaveCriticalSection
FlushFileBuffers
HeapValidate
IsDebuggerPresent
InterlockedDecrement
CompareStringW
SetStdHandle
OutputDebugStringW
GetStringTypeW
HeapAlloc
WriteConsoleA
OutputDebugStringA
GetACP
GetCommandLineW
GetTickCount
GetCurrentProcess
GetCommandLineA
lstrlenA
FreeEnvironmentStringsW
DeleteCriticalSection
OpenMutexA
GetUserDefaultLCID
GetCurrentProcessId
RtlUnwind
InterlockedExchange
SetUnhandledExceptionFilter
VirtualFree
GetModuleHandleA
GetStdHandle
TlsFree
TlsSetValue
FreeLibrary
lstrcmpiA
SetConsoleCtrlHandler
GetVersionExA
GetConsoleMode
GetTimeZoneInformation
CreateMutexA
SetFilePointer
IsBadReadPtr
MultiByteToWideChar
LoadLibraryA
GetEnvironmentStrings
WriteFile
DebugBreak
GetCurrentThreadId
GetCurrentThread
EnterCriticalSection
GetSystemTimeAsFileTime
HeapDestroy
UnhandledExceptionFilter
OpenEventW
GetCPInfo
LCMapStringW
EnumSystemLocalesA
CompareStringA
GetModuleFileNameW
GetFileType
QueryPerformanceCounter
VirtualQuery
GetProcessHeap
ExitProcess
VirtualAlloc
GetDateFormatA
TerminateProcess
LCMapStringA
HeapFree
GetStartupInfoA
GetLocaleInfoW
GetProcAddress
SetLastError
VirtualQueryEx
IsValidCodePage
ReadFile
GetLocaleInfoA
InterlockedIncrement
RaiseException
SetLocalTime
SetHandleCount
HeapReAlloc
GetTimeFormatA
LoadLibraryW
GetOEMCP
SetEnvironmentVariableA
InitializeCriticalSection
TlsAlloc
TlsGetValue
GetConsoleOutputCP
GetEnvironmentStringsW
CloseHandle
HeapCreate
GetConsoleCP
FreeEnvironmentStringsA
GetModuleFileNameA
GetLastError
GetStartupInfoW
CreateFileA
GetStringTypeA
IsValidLocale
WriteConsoleW
WideCharToMultiByte

Sections

.text
Size: 312KB - Virtual size: 308KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 436KB - Virtual size: 434KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

336a6804342e951cb64af13213d0b42e

Headers

File Characteristics

Imports

comctl32

user32

shell32

wininet

advapi32

gdi32

kernel32

Sections

.text Size: 312KB - Virtual size: 308KB

.rdata Size: 436KB - Virtual size: 434KB

.data Size: 136KB - Virtual size: 134KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 312KB - Virtual size: 308KB

.rdata
Size: 436KB - Virtual size: 434KB

.data
Size: 136KB - Virtual size: 134KB

.rsrc
Size: 48KB - Virtual size: 47KB