9b8cbc1e427ea8ffa2422e475bc044cb1265545dd481d57a1eacabfe0ce828bd

Sharing

Copy URL Twitter E-mail

General

Target

9b8cbc1e427ea8ffa2422e475bc044cb1265545dd481d57a1eacabfe0ce828bd
Size

552KB
MD5

e1ab14e88d84981dc3bd237e4719cf1a
SHA1

11c5111b3d6ddcbc513401b318b2b1619b226d1f
SHA256

9b8cbc1e427ea8ffa2422e475bc044cb1265545dd481d57a1eacabfe0ce828bd
SHA512

6373db8804ed3b73b9e48f47002892ad82d863d949414528e922b6e6e48965014f30e5b4702717a30091d5bea566c532fa8c3243c23cd90f04190c16e433fb78
SSDEEP

12288:ivh9d53ZSpF8geS3xBCXoDxQklOSnV8ARfVrZapDOc92DPzwq:U9dnSpagE+xJOSnVTNrZMyc92DPzwq

Score

N/A

Malware Config

Signatures

Files

9b8cbc1e427ea8ffa2422e475bc044cb1265545dd481d57a1eacabfe0ce828bd
.exe windows x86

5ba52bb5e7f17c4122bab895412f9d61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
InitMUILanguage
CreatePropertySheetPageA
MakeDragList
CreateUpDownControl

user32

GetMenuState
IsDlgButtonChecked
MessageBoxA
ShowWindow
DefWindowProcW
GetProcessWindowStation
SetUserObjectInformationA
CreateWindowExA
CharLowerW
RegisterClassExA
RegisterClassA
GetScrollRange
VkKeyScanExA
DispatchMessageA
OemToCharA
CharUpperBuffW
DestroyWindow
LoadMenuIndirectA
ArrangeIconicWindows
FlashWindow
DrawStateW
GetPriorityClipboardFormat
DefFrameProcA

kernel32

WaitCommEvent
HeapDestroy
GetThreadSelectorEntry
ReadConsoleOutputW
GetStringTypeA
RtlMoveMemory
EnumSystemCodePagesW
GetConsoleMode
HeapAlloc
CommConfigDialogA
GetACP
LocalFlags
GetCurrentProcess
GetSystemDirectoryW
InterlockedIncrement
lstrcmpiW
GetTempFileNameA
GetSystemTime
GetTimeZoneInformation
VirtualUnlock
CreateRemoteThread
CloseHandle
TransmitCommChar
SetStdHandle
WriteFile
lstrcmpi
IsBadWritePtr
GetPrivateProfileStringW
CreateToolhelp32Snapshot
InitializeCriticalSection
InterlockedExchange
QueryPerformanceCounter
HeapCreate
GetVersion
LoadResource
SetEnvironmentVariableA
GetSystemDefaultLCID
TlsAlloc
CompareStringA
FindFirstFileW
SetComputerNameA
InterlockedDecrement
FindFirstFileExW
LoadModule
EnumSystemCodePagesA
PulseEvent
FindNextFileA
FlushFileBuffers
OpenEventA
GetPrivateProfileSectionNamesA
GetFileType
SystemTimeToFileTime
GetStartupInfoA
WritePrivateProfileStructW
TlsFree
DeleteCriticalSection
RtlUnwind
FormatMessageW
SetFilePointer
SystemTimeToTzSpecificLocalTime
GetModuleHandleA
MoveFileW
LoadLibraryA
GetPriorityClass
VirtualFree
SetLastError
lstrcmpA
CreateMutexA
GetTickCount
MultiByteToWideChar
MoveFileExW
LCMapStringA
OpenMutexA
ExitProcess
SetConsoleScreenBufferSize
GetModuleFileNameA
VirtualAlloc
GetOEMCP
GetFileAttributesExA
SetHandleCount
TlsSetValue
UnhandledExceptionFilter
GetConsoleTitleW
UnlockFileEx
SetVolumeLabelW
GetEnvironmentStrings
GetStdHandle
WritePrivateProfileStructA
ReadFile
WideCharToMultiByte
GetConsoleTitleA
GetCurrentThread
DuplicateHandle
HeapReAlloc
GetEnvironmentStringsW
LeaveCriticalSection
GetCurrentProcessId
RemoveDirectoryA
GetCalendarInfoA
GlobalUnfix
GetCPInfo
FillConsoleOutputAttribute
SetEndOfFile
CreateWaitableTimerW
HeapValidate
SetConsoleTitleW
TlsGetValue
GetLastError
FreeEnvironmentStringsA
GetStringTypeW
VirtualLock
LocalLock
FreeEnvironmentStringsW
TerminateProcess
GetSystemInfo
OpenWaitableTimerW
GetCommandLineA
LCMapStringW
EnterCriticalSection
GetLocalTime
GetProcAddress
CompareStringW
FindResourceW
SetWaitableTimer
SetComputerNameW
VirtualQuery
CreateWaitableTimerA
GetSystemTimeAsFileTime
GetPrivateProfileStringA
GetPrivateProfileStructW
HeapFree
WriteConsoleOutputCharacterA
GetCurrentThreadId
LockResource
WriteFileEx

wininet

InternetWriteFile
RetrieveUrlCacheEntryStreamA
HttpSendRequestW
DeleteUrlCacheEntryW
FindNextUrlCacheContainerA
InternetGetConnectedStateEx
InternetOpenW

gdi32

GetGlyphOutlineW
OffsetClipRgn
CreateDIBSection
SetRectRgn
CreatePenIndirect
EndDoc
CheckColorsInGamut
StretchDIBits

shell32

ExtractIconExA
InternalExtractIconListA
SHFileOperationA
ShellAboutA

advapi32

CreateServiceA
GetUserNameA
CryptSetProviderW
RegDeleteKeyW
RegQueryInfoKeyW
LookupPrivilegeNameA
CryptGetProvParam
RegCloseKey
RevertToSelf
RegCreateKeyW
CryptVerifySignatureA
LogonUserW
CryptSignHashW
StartServiceA
StartServiceW

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ba52bb5e7f17c4122bab895412f9d61

Headers

File Characteristics

Imports

comctl32

user32

kernel32

wininet

gdi32

shell32

advapi32

Sections

.text Size: 164KB - Virtual size: 163KB

.rdata Size: 252KB - Virtual size: 250KB

.data Size: 108KB - Virtual size: 120KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 164KB - Virtual size: 163KB

.rdata
Size: 252KB - Virtual size: 250KB

.data
Size: 108KB - Virtual size: 120KB

.rsrc
Size: 24KB - Virtual size: 20KB