9b586f52194b09c30dfabd49c6e0d5a8b5b5d7427e5bb95c7644d9cfd3e3369e

Sharing

Copy URL Twitter E-mail

General

Target

9b586f52194b09c30dfabd49c6e0d5a8b5b5d7427e5bb95c7644d9cfd3e3369e
Size

356KB
MD5

e2e5b9df4aee6419c705f825fc93afa6
SHA1

63df244ff53e7436e4160ff18f1eab388b9b7f87
SHA256

9b586f52194b09c30dfabd49c6e0d5a8b5b5d7427e5bb95c7644d9cfd3e3369e
SHA512

5436deb47cd37737161f63a959f8f5a8bfb3f7737ec82088ff650daeaf7fdf29d6dd36750f24158b82d1919bc7e641e61a692eadefb1379a667e6de407181537
SSDEEP

6144:xK9B1CWqpOtWASjmIy85faSyQvG92mkh8tQn8jrF4TukZ:UCWqo7eM85faSNvG9dQn+ryT

Score

N/A

Malware Config

Signatures

Files

9b586f52194b09c30dfabd49c6e0d5a8b5b5d7427e5bb95c7644d9cfd3e3369e
.exe windows x86

21a229dcc55f8262822fc1cd6531ad4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Merge
InitCommonControlsEx
ImageList_DragEnter
CreateToolbar
DrawStatusTextA
ImageList_Replace
CreateStatusWindowW
ImageList_BeginDrag
ImageList_DragShowNolock
MakeDragList
ImageList_GetFlags
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_AddIcon
ImageList_GetIcon
ImageList_SetBkColor
DestroyPropertySheetPage
ImageList_EndDrag

shell32

SHBrowseForFolderW
RealShellExecuteA
ShellExecuteEx
SHQueryRecycleBinW
SHFormatDrive

advapi32

RegEnumKeyExA
RegOpenKeyExW
LookupAccountSidW
LookupSecurityDescriptorPartsA
RegRestoreKeyW
CryptSignHashW
CryptDuplicateKey
LookupPrivilegeValueA
LookupPrivilegeNameW
CryptCreateHash

kernel32

HeapFree
GetModuleHandleA
EnumSystemLocalesA
GetStringTypeW
CreateDirectoryExW
SetStdHandle
WideCharToMultiByte
CreateMutexA
CloseHandle
ReadConsoleW
GetCPInfo
FreeLibrary
GetCurrentDirectoryW
GetConsoleMode
GetProcessHeap
RtlUnwind
CompareStringW
SetConsoleCursorPosition
FindNextFileA
WriteConsoleInputA
LoadModule
GetSystemTimeAsFileTime
TlsAlloc
GetCurrentThreadId
SetLocaleInfoW
GetVersionExA
TlsGetValue
SetEnvironmentVariableA
GetModuleFileNameA
LoadLibraryA
SetHandleCount
EnumResourceLanguagesA
GetACP
VirtualFree
GetTimeZoneInformation
IsDebuggerPresent
HeapCreate
GetConsoleCP
DeleteFileW
GetFileType
lstrcatW
InterlockedIncrement
WaitForMultipleObjectsEx
GetStdHandle
TerminateProcess
IsValidLocale
GetVolumeInformationA
Sleep
GetConsoleOutputCP
IsValidCodePage
FillConsoleOutputAttribute
GlobalFlags
GetTimeFormatA
TransactNamedPipe
HeapAlloc
LeaveCriticalSection
FreeEnvironmentStringsA
RaiseException
lstrcatA
GetStringTypeA
OpenMutexA
LCMapStringA
LocalFlags
SetConsoleMode
InterlockedDecrement
GetTickCount
GetCurrentThread
SetUnhandledExceptionFilter
GetProcAddress
GetCurrentProcess
GetUserDefaultLCID
InterlockedExchangeAdd
GetStartupInfoA
FlushFileBuffers
DeleteCriticalSection
WriteConsoleA
GetLastError
SetConsoleCP
EnumSystemCodePagesA
GetDateFormatA
GetDriveTypeA
HeapLock
TlsSetValue
VirtualQuery
LockFileEx
SetConsoleCtrlHandler
FindResourceExW
HeapReAlloc
CreateFileA
HeapDestroy
GlobalAddAtomA
HeapSize
GetLongPathNameA
EnterCriticalSection
GetOEMCP
CreateFileW
WriteConsoleW
GetLocaleInfoA
SetLastError
MapViewOfFile
TlsFree
CreateSemaphoreW
VirtualAlloc
ReadFile
GetEnvironmentStringsW
GetWindowsDirectoryW
MultiByteToWideChar
LCMapStringW
GetCurrentProcessId
lstrcat
GetLocaleInfoW
FindAtomW
FreeEnvironmentStringsW
QueryPerformanceCounter
CompareStringA
InitializeCriticalSection
GetUserDefaultLangID
CreateDirectoryA
GetCommandLineA
ExitProcess
UnhandledExceptionFilter
GetProcAddress
WriteFile
GetEnvironmentStrings
SetConsoleScreenBufferSize
InterlockedExchange
SetFilePointer
CommConfigDialogW
EnumResourceNamesW

user32

DlgDirListW
CharLowerA
PeekMessageW
DlgDirListA
CharLowerBuffA
ShowWindowAsync
GetWindowModuleFileNameW
EqualRect
DrawFrameControl
GetPropA
SystemParametersInfoA
DdeGetData
BroadcastSystemMessageW
RegisterClassExA
UnregisterClassW
RegisterClassA
LockWindowUpdate
InflateRect

Sections

.text
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21a229dcc55f8262822fc1cd6531ad4e

Headers

File Characteristics

Imports

comctl32

shell32

advapi32

kernel32

user32

Sections

.text Size: 84KB - Virtual size: 82KB

.rdata Size: 92KB - Virtual size: 91KB

.data Size: 92KB - Virtual size: 95KB

.rsrc Size: 84KB - Virtual size: 83KB

.text
Size: 84KB - Virtual size: 82KB

.rdata
Size: 92KB - Virtual size: 91KB

.data
Size: 92KB - Virtual size: 95KB

.rsrc
Size: 84KB - Virtual size: 83KB