9fc38c978d4a87b5a9c9c1d5cdbfaf79243f1c9afcd304d1b04a36fb830ccd90

Sharing

Copy URL

Twitter E-mail

General

Target

9fc38c978d4a87b5a9c9c1d5cdbfaf79243f1c9afcd304d1b04a36fb830ccd90
Size

251KB
MD5

07674572cf79953c21898b8014967e52
SHA1

fd6c764b9b4fbd2c1dec2f26a5386bc48e769346
SHA256

9fc38c978d4a87b5a9c9c1d5cdbfaf79243f1c9afcd304d1b04a36fb830ccd90
SHA512

7c947f210c575d6b38a7fb5e5dd4ecee409c2df389fb285644175be1e713ca29d0a9dc321bcb37fa85ed26a7a08e9a12c3e9d9be45de7f42e1fae3c8015a8f0b
SSDEEP

3072:4ar2vYb/wk6D6EWOzYQjqRbC+h7jTBLjF5FemO9QbBLUcLTUEwhdI:4ayvYb/wk6TWOALhXTB0meQlUcLQEw

Score

N/A

Malware Config

Signatures

Files

9fc38c978d4a87b5a9c9c1d5cdbfaf79243f1c9afcd304d1b04a36fb830ccd90
.exe windows x86

9f7ba6eb6cd5dbd20b346445126d4a02

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetTickCount
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LoadLibraryW
HeapAlloc
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
GetStdHandle
WriteFile
IsProcessorFeaturePresent
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
HeapSetInformation
GetCommandLineA
DecodePointer
ExitProcess
GetModuleHandleW
GetProcAddress
HeapFree
GetLastError
lstrcatA
GetModuleFileNameW
ReadFile
FileTimeToSystemTime
HeapCreate
GetSystemTimeAsFileTime
RaiseException
Sleep
SetFilePointer
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
HeapSize
HeapReAlloc
SetStdHandle
WriteConsoleW
MultiByteToWideChar
LCMapStringW
GetStringTypeW
FlushFileBuffers
lstrcpyA
CloseHandle
QueryPerformanceFrequency
GetModuleHandleA
EnterCriticalSection
SetSystemTime
lstrlenA
CreateFileW
SetPriorityClass
GetFileSize
QueryPerformanceCounter
LeaveCriticalSection
GetCurrentProcess
DeleteCriticalSection
CreateFileA

user32

GetDlgItemTextA
CreateWindowExA
GetWindowLongA
UnregisterClassA
LoadCursorA
DestroyMenu
UpdateWindow
SendMessageW
SetWindowTextA
IsWindowVisible
GetSystemMetrics
GetWindowLongW
LoadMenuW
EndPaint
DialogBoxParamA
SetDlgItemTextA
DestroyWindow
SetScrollInfo
GetDlgItemInt
SetTimer
GetWindowRect
InsertMenuItemA
ScrollWindowEx
MessageBoxW
CheckRadioButton
AppendMenuA
GetClassInfoA
GetSysColorBrush
CreatePopupMenu
ShowWindow
GetCursorPos
SetWindowPos
GetSysColor
DefWindowProcA
EndDialog
DefWindowProcW
CopyRect
MoveWindow
DrawTextA
SetWindowLongW
GetDlgItem
RegisterClassExA
PostQuitMessage
SendDlgItemMessageA
TrackPopupMenu
FillRect
DrawTextW
KillTimer
InvalidateRect
GetSubMenu
DrawIconEx
GetFocus
LoadIconA
wsprintfA
GetClientRect
DrawTextExW
SetFocus
SendMessageA
BeginPaint
wsprintfW
GetDC
SetDlgItemInt
LoadIconW
OffsetRect
GetWindowTextA
TrackPopupMenuEx
DragDetect
SetWindowLongA
MessageBoxA
ReleaseDC

gdi32

GetWindowOrgEx
GetTextExtentPoint32A
SetViewportOrgEx
StartPage
SetTextColor
DeleteDC
CreateFontA
GetDeviceCaps
CreateFontIndirectA
SetBkColor
CreateDCA
SetBkMode
EndPage
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
StartDocA
FillRgn
SaveDC
CreateFontW
GetObjectA
EndDoc
GetStockObject
RestoreDC
CreateSolidBrush
TextOutA
DeleteObject
SetWindowOrgEx

winspool.drv

OpenPrinterA
ord201
ClosePrinter

comdlg32

GetFileTitleA
GetOpenFileNameA

ole32

CoTaskMemFree

ws2_32

WSAAsyncGetProtoByNumber

winscard

SCardListReadersA
SCardReleaseContext
SCardGetStatusChangeA
SCardLocateCardsA
SCardEstablishContext
SCardFreeMemory

version

GetFileVersionInfoW

comctl32

ImageList_GetIconSize
CreateToolbarEx
ImageList_DrawIndirect
ord17
ImageList_ReplaceIcon
ImageList_Create

gdiplus

GdipDrawEllipseI
GdipDeleteGraphics
GdipAlloc
GdipDeletePen
GdipFree
GdipCreatePen1
GdipDrawRectangleI
GdiplusStartup
GdipCreateFromHDC2
GdiplusShutdown

secur32

AddCredentialsA

wsnmp32

ord320

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f7ba6eb6cd5dbd20b346445126d4a02

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

ole32

ws2_32

winscard

version

comctl32

gdiplus

secur32

wsnmp32

Sections

.text Size: 64KB - Virtual size: 64KB

.rdata Size: 133KB - Virtual size: 132KB

.data Size: 23KB - Virtual size: 32KB

.rsrc Size: 22KB - Virtual size: 22KB

.reloc Size: 7KB - Virtual size: 6KB

.text
Size: 64KB - Virtual size: 64KB

.rdata
Size: 133KB - Virtual size: 132KB

.data
Size: 23KB - Virtual size: 32KB

.rsrc
Size: 22KB - Virtual size: 22KB

.reloc
Size: 7KB - Virtual size: 6KB