b6e7403dda4487953ae5aff051463aafe2693e88cbe212b3ec1ffaf5535ccdd3

Sharing

Copy URL Twitter E-mail

General

Target

b6e7403dda4487953ae5aff051463aafe2693e88cbe212b3ec1ffaf5535ccdd3
Size

748KB
MD5

b838d5c0bef19918692c39fc82f1e42c
SHA1

308d648d688047031787470cefb07648c9c44b39
SHA256

b6e7403dda4487953ae5aff051463aafe2693e88cbe212b3ec1ffaf5535ccdd3
SHA512

fc57f4dadba46a3132863efcd5ade729f5d505a8da99024a6841b82e78c12905ff33c013d763a117c102777305e4767f248a6ae41f98e5a0af95ba271a5d5ba4
SSDEEP

12288:WjHLOSu1MSBVLohfG6csTo4mojnKwPqUNDzLHMsCXLTFlHc8JYNkSrWuX:WzdkMSbLoAls4ojK2V5nMsqFBpJsZ

Score

N/A

Malware Config

Signatures

Files

b6e7403dda4487953ae5aff051463aafe2693e88cbe212b3ec1ffaf5535ccdd3
.exe windows x86

a145ed8408b0cc26284ed791b4319ded

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptSetProviderExA
CryptImportKey
RegOpenKeyExA
CryptEnumProvidersA
InitiateSystemShutdownA

kernel32

GetProcAddress
FileTimeToSystemTime
OpenProcess
GetNamedPipeHandleStateA
GetTempFileNameA
LocalHandle
HeapCreate
UnhandledExceptionFilter
ExitProcess
GetModuleFileNameW
GetLastError
HeapLock
VirtualFreeEx
WriteProfileStringA
GlobalDeleteAtom
MultiByteToWideChar
GetEnvironmentStrings
GetPrivateProfileIntW
GetCommandLineA
GetStringTypeA
LCMapStringA
InterlockedIncrement
SetVolumeLabelA
GetSystemDirectoryW
GetProcessHeap
LoadLibraryA
SetWaitableTimer
RtlUnwind
ReadConsoleOutputCharacterA
lstrcmpiA
SetFilePointer
Sleep
GetCurrentThread
VirtualFree
SetEnvironmentVariableA
FlushFileBuffers
SetFileAttributesW
VirtualQuery
GetFileAttributesExW
TlsGetValue
WriteConsoleOutputW
UnmapViewOfFile
GetCurrentProcessId
CompareStringA
SetConsoleCursorInfo
GetEnvironmentStringsW
LocalCompact
lstrcpyW
ReadFile
GetProfileStringA
WideCharToMultiByte
GetVersion
GetCommandLineW
GetStdHandle
LoadResource
HeapAlloc
EnterCriticalSection
ReadConsoleInputA
GetLogicalDrives
CreateMutexA
InterlockedDecrement
GetThreadTimes
DeleteCriticalSection
GetVersionExA
GetSystemTimeAsFileTime
GetProcAddress
MapViewOfFileEx
GetFileType
GetModuleHandleA
GetTickCount
SetStdHandle
FreeEnvironmentStringsW
WriteConsoleInputA
CreateThread
HeapDestroy
LCMapStringW
GlobalAlloc
LockResource
SetLastError
CreateDirectoryExA
HeapReAlloc
GetCurrentThreadId
GetDiskFreeSpaceW
GetCPInfo
GlobalFree
IsBadWritePtr
GetSystemDirectoryA
GetStartupInfoW
GetSystemDefaultLCID
GetSystemInfo
GetLocalTime
FindResourceW
CloseHandle
SleepEx
GetModuleFileNameA
GetProfileSectionW
LoadLibraryW
FreeEnvironmentStringsA
WriteFileEx
GetSystemTime
SetThreadContext
LeaveCriticalSection
QueryPerformanceCounter
InterlockedExchange
TlsAlloc
LoadLibraryExA
EnumDateFormatsExA
InitializeCriticalSection
VirtualAlloc
SetSystemTime
SetLocaleInfoA
TerminateProcess
HeapFree
SetHandleCount
CompareStringW
GetModuleHandleW
TlsFree
GetStartupInfoA
TlsSetValue
SetComputerNameW
OpenMutexA
InterlockedCompareExchange
GetStringTypeW
GetTimeZoneInformation
WriteFile
GetNumberFormatW
GetCurrentProcess

comdlg32

ReplaceTextA

comctl32

ImageList_DragLeave
ImageList_Remove
CreateToolbar
ImageList_SetIconSize
DrawStatusTextA
ImageList_ReplaceIcon
GetEffectiveClientRect
ImageList_SetOverlayImage
ImageList_Merge
ImageList_GetImageRect
ImageList_LoadImageA
CreatePropertySheetPageW
CreateStatusWindowW
ImageList_GetImageInfo
ImageList_Draw
_TrackMouseEvent
ImageList_Copy
ImageList_DrawIndirect
ImageList_GetFlags
ImageList_SetDragCursorImage
InitCommonControlsEx
ImageList_SetBkColor

shell32

DragQueryFileA
SheSetCurDrive
InternalExtractIconListW
SheGetDirA
InternalExtractIconListA

wininet

InternetQueryOptionW
FtpFindFirstFileA
InternetSetDialStateW
RegisterUrlCacheNotification
InternetLockRequestFile
RetrieveUrlCacheEntryStreamW
InternetAlgIdToStringW
IncrementUrlCacheHeaderData

user32

ShowWindow
IsWindow
SetWindowsHookW
ToAscii
TranslateAccelerator
CreateWindowExA
SubtractRect
GetSysColor
ExcludeUpdateRgn
CopyRect
DdeImpersonateClient
DefWindowProcW
GetClipboardViewer
DdeFreeStringHandle
LoadBitmapA
GetClipboardFormatNameA
EnumWindowStationsW
GetPropW
DestroyWindow
ChangeDisplaySettingsW
RegisterClassExA
DrawMenuBar
RemoveMenu
PostMessageW
PostThreadMessageA
WaitForInputIdle
ChangeDisplaySettingsExW
InSendMessage
SendDlgItemMessageW
GetKeyboardLayoutNameW
MessageBoxW
EnableMenuItem
RegisterClassA

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 392KB - Virtual size: 391KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a145ed8408b0cc26284ed791b4319ded

Headers

File Characteristics

Imports

advapi32

kernel32

comdlg32

comctl32

shell32

wininet

user32

Sections

.text Size: 176KB - Virtual size: 174KB

.rdata Size: 392KB - Virtual size: 391KB

.data Size: 144KB - Virtual size: 140KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 176KB - Virtual size: 174KB

.rdata
Size: 392KB - Virtual size: 391KB

.data
Size: 144KB - Virtual size: 140KB

.rsrc
Size: 32KB - Virtual size: 31KB