92847d658eb8c07d17f81ccc2e7f221d5c8271467b98adb467f2480a994f8f32

Sharing

Copy URL Twitter E-mail

General

Target

92847d658eb8c07d17f81ccc2e7f221d5c8271467b98adb467f2480a994f8f32
Size

261KB
MD5

0b94bb6aa7410746cc41dd9914e706e8
SHA1

eedfe1cbfb67a2ac47b0a2d3756aa17164b2a97d
SHA256

92847d658eb8c07d17f81ccc2e7f221d5c8271467b98adb467f2480a994f8f32
SHA512

409e5b0f2daa9a1b403bf081ee79b4d48c6a2f1edb5071e0ea9815c8ba1eca72477fbcf279094e6b102f6834440285b46992ff511d44c5fd57fd475699eb162c
SSDEEP

6144:SJcKlUDhpEhLbEENJ2xjRiCHOyMTzwnH:GnlAHybEEb+jINH

Score

N/A

Malware Config

Signatures

Files

92847d658eb8c07d17f81ccc2e7f221d5c8271467b98adb467f2480a994f8f32
.exe windows x86

602da14652e1a75a35679457e487181b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetROP2
SetBitmapDimensionEx
RoundRect
GetCharWidthW
IntersectClipRect
GetObjectW
AddFontResourceW
MoveToEx
ScaleViewportExtEx
CreateRectRgnIndirect
SwapBuffers
GetDeviceCaps
SetWorldTransform
EnumObjects
GetMetaFileW
SetDIBitsToDevice
Escape
GetCharABCWidthsA
GetTextMetricsA
AnimatePalette
CreatePolygonRgn

shell32

DragAcceptFiles

kernel32

MultiByteToWideChar
GetCompressedFileSizeA
GetCurrentProcess
HeapFree
GetLastError
GetModuleFileNameA
GetModuleFileNameW
ExpandEnvironmentStringsA
HeapReAlloc
HeapDestroy
GetCommandLineA
GetSystemTimeAdjustment
LeaveCriticalSection
FreeEnvironmentStringsW
GetEnvironmentStrings
SetSystemTime
GetStartupInfoA
FreeResource
GetSystemTimeAsFileTime
GetTickCount
CommConfigDialogW
GetCommandLineW
GetFileType
IsBadWritePtr
VirtualQuery
SetLastError
GetConsoleOutputCP
HeapAlloc
CreateEventA
UnhandledExceptionFilter
VirtualAlloc
FoldStringA
SetComputerNameW
EnumDateFormatsW
EnterCriticalSection
SetEndOfFile
VirtualFree
GetStartupInfoW
TlsSetValue
SetHandleCount
GetCurrentThread
TlsGetValue
InitializeCriticalSection
WriteFile
GetCompressedFileSizeW
DeleteCriticalSection
TlsAlloc
GetModuleHandleA
GetVersion
GetCurrentProcessId
FreeEnvironmentStringsA
GetStdHandle
GetProcAddress
HeapCreate
RtlUnwind
EnumDateFormatsExA
LoadLibraryA
GetCurrentThreadId
GetStringTypeExW
InterlockedExchange
TlsFree
TerminateProcess
ExitProcess
CreateNamedPipeW
GetEnvironmentStringsW
QueryPerformanceCounter

comdlg32

ChooseColorA

advapi32

CryptReleaseContext
CryptHashSessionKey
RegOpenKeyExW
RegReplaceKeyA
DuplicateTokenEx
LookupSecurityDescriptorPartsA
StartServiceW
CryptContextAddRef
CryptAcquireContextA
RegEnumKeyExW
CryptSetProviderW
CryptEnumProvidersA
CryptDestroyKey
CryptEnumProviderTypesA
CryptSetKeyParam
RegCreateKeyW
CryptDestroyHash
RegSaveKeyA
CryptGetUserKey
CreateServiceW
RegSetValueW
RegCloseKey

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

602da14652e1a75a35679457e487181b

Headers

File Characteristics

Imports

gdi32

shell32

kernel32

comdlg32

advapi32

Sections

.text Size: 105KB - Virtual size: 104KB

.rdata Size: 4KB - Virtual size: 18KB

.data Size: 134KB - Virtual size: 134KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 105KB - Virtual size: 104KB

.rdata
Size: 4KB - Virtual size: 18KB

.data
Size: 134KB - Virtual size: 134KB

.rsrc
Size: 17KB - Virtual size: 16KB