70837c2a115b173fd87b5d29b7ed43fbb7ce36c165e35b0f131f9641da183b78

Sharing

Copy URL Twitter E-mail

General

Target

70837c2a115b173fd87b5d29b7ed43fbb7ce36c165e35b0f131f9641da183b78
Size

570KB
MD5

bd1663a5bd47d1fc391beeb534b5c8bf
SHA1

c59d8093c08ea70bdc0d8ac7893b24d5600ff754
SHA256

70837c2a115b173fd87b5d29b7ed43fbb7ce36c165e35b0f131f9641da183b78
SHA512

356505916b31663f9c65e92326d866e32bea86bee9dab772bd1492b669252440e3a6d2125a65b40b078c29b22962a7a32a0230fadd0de9f25472e24f095ac534
SSDEEP

12288:954J/o9R1++HoWhhu8OX/+VMbeVk4aH5ggsC73QV+fWwRZjCH8ufe:9aJQ9R1++Ho2uBX/+VMbPf3TXR1CHffe

Score

N/A

Malware Config

Signatures

Files

70837c2a115b173fd87b5d29b7ed43fbb7ce36c165e35b0f131f9641da183b78
.exe windows x86

b99af11133114b2c69f6e4fefab2d2f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

gdi32

CreateCompatibleDC
GetPolyFillMode
RealizePalette
SetICMProfileW
GetROP2
SetFontEnumeration
CreateMetaFileW
SetMagicColors
GetCharWidthFloatW
GetCharWidthW
GetCharWidth32W
ExtEscape
GetObjectW
ResizePalette
PtInRegion

comdlg32

ReplaceTextA

user32

TrackPopupMenu
CreateDialogIndirectParamA
RegisterClassA
MapVirtualKeyExA
DefFrameProcA
RegisterClassExA
GetClassLongW
GetMenuBarInfo
PtInRect
SetLastErrorEx
DestroyWindow
GetDialogBaseUnits
IsCharAlphaW
ChildWindowFromPoint
WinHelpW
SetCursor
SetMenuItemInfoW
KillTimer
ScrollWindowEx
CreateCursor
DeleteMenu
GetMenuItemInfoW
DdeGetData
RemovePropW

kernel32

InitializeCriticalSection
GetACP
SetFilePointer
HeapAlloc
FreeEnvironmentStringsW
GetProcAddress
OpenMutexA
GetUserDefaultLCID
GetTickCount
EnumSystemLocalesA
GetLastError
HeapSize
SetStdHandle
VirtualAlloc
GetStdHandle
GetCurrentThreadId
IsValidLocale
TlsGetValue
ReadFile
GetCommandLineW
GetSystemTimeAsFileTime
GetDateFormatA
GetTimeZoneInformation
QueryPerformanceCounter
GetPrivateProfileSectionNamesA
GetVersionExA
TlsAlloc
HeapDestroy
GetCommandLineA
HeapFree
GetLocaleInfoW
DeleteCriticalSection
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetCurrentProcess
CompareStringW
LeaveCriticalSection
GetSystemInfo
GetStartupInfoW
GetEnvironmentStrings
ExitProcess
CreateMutexA
GetCurrentThread
GetCPInfo
LoadLibraryA
GetOEMCP
LCMapStringW
TerminateProcess
LCMapStringA
CompareStringA
SetLastError
FlushFileBuffers
SetHandleCount
TlsFree
GetStartupInfoA
GetCurrentProcessId
WriteFile
GetStringTypeW
UnhandledExceptionFilter
WideCharToMultiByte
RtlUnwind
InterlockedExchange
GetEnvironmentStringsW
IsValidCodePage
IsBadWritePtr
TlsSetValue
VirtualProtect
GetFileType
GetModuleHandleA
GetModuleFileNameW
VirtualFree
HeapCreate
FreeEnvironmentStringsA
GetTimeFormatA
EnterCriticalSection
SetEnvironmentVariableA
HeapReAlloc
VirtualQuery
GetModuleFileNameA
HeapValidate
CloseHandle

Sections

.text
Size: 229KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b99af11133114b2c69f6e4fefab2d2f6

Headers

File Characteristics

Imports

comctl32

gdi32

comdlg32

user32

kernel32

Sections

.text Size: 229KB - Virtual size: 229KB

.rdata Size: 8KB - Virtual size: 34KB

.data Size: 314KB - Virtual size: 314KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 229KB - Virtual size: 229KB

.rdata
Size: 8KB - Virtual size: 34KB

.data
Size: 314KB - Virtual size: 314KB

.rsrc
Size: 16KB - Virtual size: 16KB