9be765627501cbc62fe83f2031837c47b52df801dde606a5cf2399af04609f39

Sharing

Copy URL Twitter E-mail

General

Target

9be765627501cbc62fe83f2031837c47b52df801dde606a5cf2399af04609f39
Size

487KB
MD5

47eddee754f31f749fe3937346bce7c8
SHA1

58ab5efaa11a4b2e25b561759538f34062bfd4aa
SHA256

9be765627501cbc62fe83f2031837c47b52df801dde606a5cf2399af04609f39
SHA512

f25316683a1f530e391d0190e1ca29596655027581776a05bb610feb37998a4ed8c9a21fabeaf0eea8e856d304aefe5b946880dd30dc572aaac9774393021839
SSDEEP

12288:opStexk3FanaVcgy/au/ES9P/4/LGQvNkQgRUnUb7/:ophaFpVa/x/79P/4/LGQ14

Score

N/A

Malware Config

Signatures

Files

9be765627501cbc62fe83f2031837c47b52df801dde606a5cf2399af04609f39
.exe windows x86

2f034038adf33bd355f45908cce2dbba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InternalGetWindowText
GetWindowTextLengthA
SetMenuInfo
MessageBoxW
WINNLSEnableIME
MonitorFromPoint
RegisterClassExA
ShowWindow
ChangeMenuW
DdeFreeStringHandle
ScrollWindow
CreateWindowExA
RegisterClassA
MonitorFromWindow
TabbedTextOutW
GetFocus
FrameRect

kernel32

HeapAlloc
lstrcmpW
LockResource
MultiByteToWideChar
Sleep
LeaveCriticalSection
SetStdHandle
MoveFileExW
GetOEMCP
GetModuleFileNameW
SetEnvironmentVariableA
GetFileType
VirtualAlloc
SetConsoleActiveScreenBuffer
GetShortPathNameA
GetCurrentThreadId
WriteFile
ReadFile
GetModuleFileNameA
HeapCreate
TlsAlloc
CompareStringW
WriteConsoleW
HeapSize
IsValidCodePage
GetConsoleCP
DebugActiveProcess
GetCommandLineW
RtlUnwind
FlushFileBuffers
SetUnhandledExceptionFilter
SetFilePointer
GetStartupInfoW
IsDebuggerPresent
CreateFileA
GetCurrentProcessId
TerminateProcess
VirtualFree
LoadLibraryA
GetACP
GetCPInfo
VirtualQuery
OpenMutexA
AddAtomA
GetUserDefaultLCID
FreeLibrary
GetTimeZoneInformation
GetConsoleMode
ExitProcess
GetDateFormatA
EnterCriticalSection
GetProcessHeap
GetStdHandle
GetModuleHandleA
InterlockedIncrement
CreateMutexA
InitializeCriticalSection
LCMapStringA
CompareStringA
GetSystemTimeAsFileTime
WriteConsoleA
QueryPerformanceCounter
IsValidLocale
GetNamedPipeInfo
GetTickCount
UnhandledExceptionFilter
GetTimeFormatA
GetLastError
FreeEnvironmentStringsW
WideCharToMultiByte
HeapFree
HeapReAlloc
TlsFree
GetCommandLineA
DeleteCriticalSection
GetDiskFreeSpaceW
GetEnvironmentStrings
GetLocaleInfoW
GetConsoleOutputCP
EnumSystemLocalesA
GetStringTypeW
TlsSetValue
GetCurrentThread
WriteConsoleInputA
GetEnvironmentStringsW
SetConsoleCtrlHandler
InterlockedDecrement
TlsGetValue
GetVersionExA
GetLocaleInfoA
GetProfileStringA
GetStringTypeA
FreeEnvironmentStringsA
FindAtomW
GetCurrentProcess
GetProcAddress
SetLastError
HeapDestroy
InterlockedExchange
CloseHandle
SetHandleCount
GetStartupInfoA
LCMapStringW
WaitForMultipleObjects

wininet

FindNextUrlCacheContainerW
SetUrlCacheConfigInfoW
GetUrlCacheGroupAttributeA
FtpDeleteFileW
InternetOpenUrlA

shell32

DuplicateIcon
SheSetCurDrive

comctl32

ImageList_SetFlags
ImageList_Destroy
DrawStatusTextW
ImageList_SetImageCount
ImageList_BeginDrag
CreateStatusWindowW
DrawStatusTextA
ImageList_LoadImage
ImageList_Remove
InitCommonControlsEx
CreateToolbarEx
CreateStatusWindowA
ImageList_GetDragImage

Sections

.text
Size: 305KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f034038adf33bd355f45908cce2dbba

Headers

File Characteristics

Imports

user32

kernel32

wininet

shell32

comctl32

Sections

.text Size: 305KB - Virtual size: 304KB

.rdata Size: 60KB - Virtual size: 89KB

.data Size: 104KB - Virtual size: 104KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 305KB - Virtual size: 304KB

.rdata
Size: 60KB - Virtual size: 89KB

.data
Size: 104KB - Virtual size: 104KB

.rsrc
Size: 17KB - Virtual size: 16KB