93691ef6e834951225ad024a6b662e857a47c2f5156e3def9f38ae964143c241

Sharing

Copy URL Twitter E-mail

General

Target

93691ef6e834951225ad024a6b662e857a47c2f5156e3def9f38ae964143c241
Size

488KB
MD5

1f1ed29d064e0fa938f4df1746aa464b
SHA1

00767072ac4bef73aff8ecd6647ee4f75ac21d78
SHA256

93691ef6e834951225ad024a6b662e857a47c2f5156e3def9f38ae964143c241
SHA512

27f8377806fe34cf030e413e054dfedb5c02851c1cdebdc53f96619e230c9837e5d00046a39dacc59236531e7a9f1b1a52adc8eb2dfd2605ea8194b432a44da0
SSDEEP

6144:QRDZf2q8HZzCQwsp1blgePBTyJKA4u2EIIA5X3UFFdr7jgcYZQBphXX3z7:QRDZf2hZzCj6hdPxyreYFlFYyXf

Score

N/A

Malware Config

Signatures

Files

93691ef6e834951225ad024a6b662e857a47c2f5156e3def9f38ae964143c241
.exe windows x86

2b72d3f2cc6b5616fc1e5507711a7e03

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
LocalAlloc
GetEnvironmentVariableW
LoadLibraryA
GetLastError
GetComputerNameW
GetModuleHandleA
GetVersion
SetWaitableTimer
CreateWaitableTimerW
OpenWaitableTimerW
GetCurrentThread
CompareStringW
ResumeThread
GetModuleHandleW
GetComputerNameExW
SetLastError
lstrlenW
LoadLibraryW
GetCurrentThreadId
GetTickCount
DisableThreadLibraryCalls
CreateEventW
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
RemoveDirectoryW
CreateMutexW
lstrlenA
ReleaseMutex
OutputDebugStringA
GetModuleFileNameW
UnhandledExceptionFilter
MultiByteToWideChar
LeaveCriticalSection
CloseHandle
VirtualAlloc
lstrcmpiW
GlobalFree
GlobalAlloc
lstrcatW
GetWindowsDirectoryW
IsBadReadPtr
WideCharToMultiByte
LoadResource
FindResourceW
lstrcmpW
InitializeCriticalSection
DeleteCriticalSection
GlobalUnlock
GlobalLock
HeapFree
GetProcessHeap
HeapReAlloc
HeapAlloc
FreeLibrary
GetLocaleInfoW
QueryPerformanceCounter
Sleep
VirtualFree
GlobalReAlloc
RaiseException
FlushInstructionCache
GetCalendarInfoA
GlobalSize
WaitForSingleObject
CreateThread
GetCurrentProcess

user32

GetDlgItem
LoadIconW
wsprintfW
SetWindowLongW
GetWindowLongW
SetDlgItemTextW
LoadStringW
EnableWindow

advapi32

RegOpenKeyW
GetSidSubAuthority
OpenSCManagerW
CloseServiceHandle
ReportEventW
DeregisterEventSource
DuplicateToken
OpenThreadToken
ImpersonateSelf
AllocateAndInitializeSid
CheckTokenMembership
RevertToSelf
FreeSid
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegisterEventSourceW
RegDeleteKeyW
RegQueryInfoKeyW
GetTokenInformation
RegEnumKeyExW
GetSidIdentifierAuthority

ole32

CLSIDFromString
CoInitializeEx
CoUninitialize
CoMarshalInterThreadInterfaceInStream
CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2
CoInitialize
ReleaseStgMedium
CoUnmarshalInterface
CreateStreamOnHGlobal

oleaut32

SysAllocString
VariantInit
SysStringByteLen

msvcrt

wcscat
wcscmp
rand
srand
free
wcslen
wcschr
iswprint
iswspace
wcstok
time
wcstoul
wcsspn
swscanf
wcsncmp
realloc
wcstol

secur32

DeleteSecurityContext
GetUserNameExW
InitializeSecurityContextW
FreeContextBuffer
AcceptSecurityContext
QuerySecurityContextToken

comctl32

CreatePropertySheetPageW
InitCommonControlsEx
DestroyPropertySheetPage

crypt32

CertFindCTLInStore
CertCloseStore
CertGetCertificateContextProperty
CertFindCertificateInStore
CertFreeCertificateContext
CertAddCertificateContextToStore
CertVerifyCertificateChainPolicy
CertGetCertificateChain
CertNameToStrW
CertControlStore
CertRegisterPhysicalStore

rpcrt4

UuidCreate
UuidToStringW
RpcStringFreeW

winscard

SCardEstablishContext

Sections

.text
Size: 272KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 208KB - Virtual size: 751KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2b72d3f2cc6b5616fc1e5507711a7e03

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

msvcrt

secur32

comctl32

crypt32

rpcrt4

winscard

Sections

.text Size: 272KB - Virtual size: 270KB

.idata Size: 6KB - Virtual size: 5KB

.data Size: 208KB - Virtual size: 751KB

.text
Size: 272KB - Virtual size: 270KB

.idata
Size: 6KB - Virtual size: 5KB

.data
Size: 208KB - Virtual size: 751KB