0f36a53a0e4dcb86114693c5f234173d394ec54fbd91d2c0aa6dca215f4419cb

Sharing

Copy URL

Twitter E-mail

General

Target

0f36a53a0e4dcb86114693c5f234173d394ec54fbd91d2c0aa6dca215f4419cb
Size

740KB
MD5

ecccef08586252ebfb70b64bdf9656fd
SHA1

58056c68156eb0b527b4ad30100fbba5c73b569d
SHA256

0f36a53a0e4dcb86114693c5f234173d394ec54fbd91d2c0aa6dca215f4419cb
SHA512

b6f486aca91d3fe2b6b57ea451fb6e49e12b01c692306ef6a00a30349da8eb2c10a02ead281e0fa582c9ad6b603e0601da75df8548494463b69b9782847dcb55
SSDEEP

12288:NhNPq8O/xOSPtbTOD25l0XZqIhbG9zej9auDKlrGPl2QmwaXarasFSoQPvSt1:Tc8aOla5iwabyaoua00arX

Score

N/A

Malware Config

Signatures

Files

0f36a53a0e4dcb86114693c5f234173d394ec54fbd91d2c0aa6dca215f4419cb
.exe windows x86

5e633001d88d3a21cb9284fa66f75f03

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKBCodePage
RegisterClassExA
GetNextDlgTabItem
OemKeyScan
DefFrameProcA
EndDeferWindowPos
DefMDIChildProcA
LoadCursorA
ShowWindow
UnregisterDeviceNotification
GetUpdateRect
CharToOemBuffA
DefWindowProcW
LoadImageA
SetRect
GetClassNameW
DrawStateW
DestroyWindow
ToAsciiEx
DrawFocusRect
ArrangeIconicWindows
MessageBoxW
MenuItemFromPoint
CreateWindowExW
CallMsgFilterW
FillRect
RegisterClassA

kernel32

GetSystemTimeAsFileTime
SetConsoleCP
GetCommandLineA
GetVolumeInformationA
VirtualProtectEx
GetCompressedFileSizeW
EnumSystemCodePagesW
GetEnvironmentStrings
GetProcAddress
SetConsoleTitleW
lstrcpynA
WriteFile
SetFilePointer
EnumSystemLocalesW
FreeLibrary
GetDiskFreeSpaceW
WideCharToMultiByte
lstrcpyA
HeapFree
UnmapViewOfFile
GetOEMCP
OpenMutexA
DebugActiveProcess
GetCurrentThreadId
IsValidCodePage
GetEnvironmentVariableA
EnumSystemLocalesA
GetLocalTime
GetLocaleInfoA
TlsAlloc
SetEnvironmentVariableA
GetModuleFileNameA
SetHandleCount
LocalCompact
GetModuleHandleA
CreateNamedPipeW
GetUserDefaultLCID
GetConsoleOutputCP
ReadFile
SetUnhandledExceptionFilter
WriteConsoleInputA
GlobalReAlloc
GetWindowsDirectoryW
HeapDestroy
ReadConsoleA
ReadConsoleOutputCharacterA
CompareStringW
SetFileAttributesW
DeleteCriticalSection
GetCPInfo
InitializeCriticalSectionAndSpinCount
GetCompressedFileSizeA
GetACP
InterlockedDecrement
EnterCriticalSection
TlsSetValue
GetConsoleCP
ReadConsoleInputA
GetFileAttributesExA
lstrcmpi
VirtualQuery
UnhandledExceptionFilter
GetTimeFormatA
ExpandEnvironmentStringsA
GetCurrentProcessId
FreeEnvironmentStringsW
CloseHandle
GetSystemTimeAdjustment
lstrcpyn
SetLastError
LoadLibraryA
GetDiskFreeSpaceExW
MultiByteToWideChar
GetVersionExA
GetDateFormatA
GetStartupInfoA
Sleep
EnumResourceNamesW
QueryPerformanceCounter
FindNextChangeNotification
GetCurrentThread
CreateNamedPipeA
OpenSemaphoreW
TerminateProcess
FlushFileBuffers
GetProcessShutdownParameters
CreateMutexA
GetTickCount
GetLogicalDriveStringsA
CompareStringA
GetLocaleInfoW
LoadLibraryExA
GetProcAddress
HeapSize
VirtualFreeEx
GetLastError
VirtualFree
TlsGetValue
CreateFileA
GetStringTypeA
WriteConsoleW
InterlockedIncrement
FoldStringA
CreateMailslotW
LoadLibraryW
GetConsoleTitleA
FindFirstFileW
HeapReAlloc
LCMapStringW
IsValidLocale
FreeEnvironmentStringsA
LeaveCriticalSection
RtlUnwind
LCMapStringA
IsDebuggerPresent
ExitProcess
HeapAlloc
GetFullPathNameA
CommConfigDialogA
SetStdHandle
GetFileType
SetCriticalSectionSpinCount
WriteConsoleA
DebugBreak
GetConsoleMode
VirtualAlloc
InitializeCriticalSection
GetTimeZoneInformation
GetCurrentProcess
GetProcessHeap
WriteConsoleOutputCharacterA
GetStdHandle
GetEnvironmentStringsW
InterlockedExchange
SetConsoleCtrlHandler
GetFileAttributesExW
GetWindowsDirectoryA
CreateMailslotA
HeapCreate
TlsFree
GetStringTypeW

comctl32

_TrackMouseEvent
ImageList_GetBkColor
ImageList_Replace
InitCommonControlsEx
ImageList_Remove
ImageList_BeginDrag
ImageList_Create
ImageList_GetIcon
ImageList_DragShowNolock
DestroyPropertySheetPage
ImageList_DragMove
ImageList_DrawIndirect
CreateStatusWindow
ImageList_Duplicate

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 456KB - Virtual size: 452KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e633001d88d3a21cb9284fa66f75f03

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 456KB - Virtual size: 452KB

.data Size: 144KB - Virtual size: 151KB

.rsrc Size: 32KB - Virtual size: 30KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 456KB - Virtual size: 452KB

.data
Size: 144KB - Virtual size: 151KB

.rsrc
Size: 32KB - Virtual size: 30KB