032bfb93447e6a3a34dbcaabfa89da83a48d6d9646314f32e742addb28b38e6b

Sharing

Copy URL Twitter E-mail

General

Target

032bfb93447e6a3a34dbcaabfa89da83a48d6d9646314f32e742addb28b38e6b
Size

208KB
MD5

e2fb730916ae43a70526f1a1378b9bc4
SHA1

843c48db180b300e544472bc6ba2a0b0055ce6ef
SHA256

032bfb93447e6a3a34dbcaabfa89da83a48d6d9646314f32e742addb28b38e6b
SHA512

30e2b7da70dca6e8c8a3aaf3d0deca70bfce8c0878727b52134adb9d1d2e436b8609c43d08e38d1a96245e6eea44942b01fda572df4aabb458f1ee14f7c9966a
SSDEEP

6144:WqF13LDj5VpXp6iJm0AeIvKwxtTBOM9Vex:Wqb7v5Vt340TIiwxtTkUg

Score

N/A

Malware Config

Signatures

Files

032bfb93447e6a3a34dbcaabfa89da83a48d6d9646314f32e742addb28b38e6b
.exe windows x86

2f7b660d8e7a66af48ddbac4b1a04f42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32First
CreateToolhelp32Snapshot
Sleep
LoadLibraryA
GetProcAddress
GetTickCount
HeapFree
HeapAlloc
GetProcessHeap
CreateProcessA
TerminateProcess
VirtualAlloc
GetFileAttributesA
CopyFileA
lstrlenA
SetLastError
InitializeCriticalSection
DeleteCriticalSection
WinExec
LeaveCriticalSection
EnterCriticalSection
CreateThread
WaitForSingleObject
GetCurrentProcess
DeviceIoControl
Process32Next
GetEnvironmentVariableA
ExitProcess
QueryPerformanceCounter
GetCommandLineA
SetCurrentDirectoryA
ReadFile
FlushViewOfFile
SizeofResource
LockResource
LoadResource
FindResourceA
GetLocalTime
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetLastError
GetCurrentProcessId
SetFileAttributesA
GetSystemDirectoryA
GetLongPathNameA
GetTempPathA
CreateDirectoryA
GetModuleHandleA
GetModuleFileNameA
GlobalFree
GlobalAlloc
CreateFileA
GetFileSize
CreateFileMappingA
MapViewOfFile
WriteFile
CloseHandle
UnmapViewOfFile
UnhandledExceptionFilter
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
SetUnhandledExceptionFilter
GetOEMCP
GetACP
GetCPInfo
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
HeapSize
HeapReAlloc
GetVersion
GetStartupInfoA
GetSystemTime
GetTimeZoneInformation
RaiseException
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindNextFileA
FindFirstFileA

user32

SendMessageA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
PostMessageA
wsprintfA
UnregisterClassA
DefWindowProcA
CallWindowProcA
PostQuitMessage
SetTimer
KillTimer
CreateWindowExA
RegisterClassExA
LoadCursorA
GetClassNameA
DestroyWindow

advapi32

RegCreateKeyExA
RegSetValueExA
RegFlushKey
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA
CloseServiceHandle
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
QueryServiceStatus

shell32

SHGetSpecialFolderPathA

ws2_32

gethostbyname
inet_ntoa
inet_addr
sendto
WSAStartup
socket
setsockopt
WSAGetLastError
closesocket
WSACleanup
recv
htonl
ntohl
ntohs
WSARecvFrom
send
WSAAsyncSelect
listen
accept
bind
__WSAFDIsSet
select
connect
ioctlsocket
shutdown
gethostname
htons

iphlpapi

GetAdaptersInfo
CreateIpNetEntry
GetBestRoute
GetPerAdapterInfo
GetIpAddrTable

shlwapi

PathAppendA
UrlUnescapeA
PathIsDirectoryA

wininet

InternetCrackUrlA
InternetCanonicalizeUrlA

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f7b660d8e7a66af48ddbac4b1a04f42

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ws2_32

iphlpapi

shlwapi

wininet

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 32KB - Virtual size: 52KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 32KB - Virtual size: 52KB

.rsrc
Size: 24KB - Virtual size: 20KB