0fcd9e34050d55ae3e48a3f2efe09034cb61d1cd429210b5445a802c49a710d1

Sharing

Copy URL Twitter E-mail

General

Target

0fcd9e34050d55ae3e48a3f2efe09034cb61d1cd429210b5445a802c49a710d1
Size

384KB
MD5

889b789ad7a62809620722846818d8d6
SHA1

6dba3354bd354d1868b38554b84323f6514b12ff
SHA256

0fcd9e34050d55ae3e48a3f2efe09034cb61d1cd429210b5445a802c49a710d1
SHA512

d7c9f705ef29f2c7cc8a0696b1ebfa3a024bece7b88fb871cbbb4055582bda5f5003dbaa3867a9ae9b98eccd67908ed915cedea89d79f5995c80fe11dde8a670
SSDEEP

6144:MOnGjPOxGuliqPhBXzKDYPBHZcIr2ytbYs1qsLfBpqbNLIKGk:NnGjPOxGyiAhBxKIagYiqsLCBMKG

Score

N/A

Malware Config

Signatures

Files

0fcd9e34050d55ae3e48a3f2efe09034cb61d1cd429210b5445a802c49a710d1
.exe windows x86

41c17528241a98963ed22b13ca2df90d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetSetOptionExA
InternetLockRequestFile
InternetAttemptConnect
GopherGetAttributeA
FtpGetFileEx
FtpRemoveDirectoryA
UnlockUrlCacheEntryFileA
FtpPutFileA

user32

GetWindowContextHelpId
LoadMenuIndirectW
SetTimer
DdeClientTransaction
IsCharAlphaA
MessageBoxW
RegisterClassExW
GetWindowLongA
RegisterClassExA
AnyPopup
GetScrollRange
GetCaretBlinkTime
LoadBitmapW
CharUpperBuffA
GetClipboardOwner
WaitMessage
PeekMessageW
SendMessageA
DdeFreeStringHandle
WindowFromPoint
BroadcastSystemMessageA
FindWindowW
GetProcessDefaultLayout
CreateMenu
GetTopWindow
IsZoomed
GetPropA
DdeSetUserHandle
GetKeyNameTextA
DialogBoxIndirectParamA
IntersectRect
GetMenuInfo
GetScrollBarInfo
PostQuitMessage
SetProcessDefaultLayout
GetMessagePos
EnumDisplaySettingsExA
PeekMessageA
GetOpenClipboardWindow
DdeConnectList
ExcludeUpdateRgn
ToUnicodeEx
RegisterClassA
EnumDesktopWindows
DefWindowProcW
SetCursor
GetKeyboardState
ValidateRect
InsertMenuItemW
SetPropA
LoadIconW
GetProcessWindowStation
CreateDesktopW
GetDCEx
SetDlgItemTextW
DrawStateW
EndMenu
WindowFromDC
SetUserObjectInformationW
CreateWindowStationA
LoadIconA
ChangeMenuW
InsertMenuW
ShowScrollBar
ScrollWindowEx
ChangeDisplaySettingsExW
CallNextHookEx
FreeDDElParam
ShowCaret
GetWindowTextLengthW
DrawFocusRect
SendMessageTimeoutA
DdeInitializeA
CreateDesktopA
OpenWindowStationW
DrawCaption
CloseWindow
LoadKeyboardLayoutW
GetMenuContextHelpId
UnpackDDElParam
DestroyWindow
LoadAcceleratorsA
ChildWindowFromPoint
DlgDirListComboBoxW
ToAsciiEx
SetMenuItemBitmaps
TranslateMDISysAccel
CreateWindowExA
RemovePropW
GetPriorityClipboardFormat
GetAsyncKeyState
DdeReconnect
GetMessageA
SetClassWord
MonitorFromPoint
DlgDirSelectExA
RegisterDeviceNotificationW
SetRectEmpty
SetWindowTextA
ShowWindow

kernel32

TransmitCommChar
HeapAlloc
InterlockedExchange
IsValidCodePage
VirtualFree
GetStartupInfoA
ReadFile
VirtualProtect
SetEnvironmentVariableA
DeleteCriticalSection
FormatMessageA
EnumDateFormatsExA
GetLocaleInfoA
GetPrivateProfileIntA
TlsGetValue
GetStringTypeA
GetUserDefaultLCID
GetStdHandle
FreeEnvironmentStringsA
InitializeCriticalSection
VirtualQuery
FindResourceExW
GetModuleFileNameW
HeapCreate
GetOEMCP
FreeEnvironmentStringsW
GlobalDeleteAtom
GetCommandLineW
OutputDebugStringA
SetWaitableTimer
GetFileType
lstrcmpiA
GetCurrentProcessId
GetStartupInfoW
TlsAlloc
GetCurrentThreadId
LCMapStringA
CreateMutexA
TerminateProcess
IsValidLocale
GetSystemInfo
SetLastError
OpenMutexA
GetModuleFileNameA
EnumSystemLocalesA
GetStringTypeW
CompareStringA
GetVersionExA
SetFilePointer
HeapDestroy
RtlUnwind
GetVolumeInformationA
GetTimeZoneInformation
GetCommandLineA
InterlockedDecrement
HeapValidate
LeaveCriticalSection
WriteFile
GetCurrentThread
LCMapStringW
GetTimeFormatA
InterlockedIncrement
SetConsoleCtrlHandler
GetDiskFreeSpaceW
GetTickCount
WideCharToMultiByte
GetEnvironmentStrings
TlsFree
TlsSetValue
TransactNamedPipe
CompareStringW
HeapFree
GetSystemTimeAsFileTime
SetStdHandle
LoadLibraryA
SetHandleCount
GetLocaleInfoW
SetVolumeLabelW
GetCPInfo
GetCurrentProcess
GetCurrencyFormatA
GetACP
QueryPerformanceCounter
GetLastError
GetEnvironmentStringsW
CreateFileA
HeapReAlloc
FlushFileBuffers
ExitProcess
EnumSystemLocalesW
VirtualAlloc
GetModuleHandleA
GetDateFormatA
EnterCriticalSection
DebugBreak
UnhandledExceptionFilter
IsBadWritePtr
MultiByteToWideChar
lstrcmpA
IsBadReadPtr
CloseHandle
GetProcAddress

comdlg32

ChooseFontA

comctl32

ImageList_Copy
InitCommonControlsEx
DrawStatusText
ImageList_Duplicate
InitMUILanguage

gdi32

CreateDIBPatternBrushPt
GetGlyphOutline
CreateDCW
GetDeviceCaps
GetObjectA
GetNearestColor
SetBrushOrgEx
GetTextExtentPoint32W
PlayEnhMetaFile
DeleteDC
CreateMetaFileW

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

41c17528241a98963ed22b13ca2df90d

Headers

File Characteristics

Imports

wininet

user32

kernel32

comdlg32

comctl32

gdi32

Sections

.text Size: 116KB - Virtual size: 113KB

.rdata Size: 100KB - Virtual size: 97KB

.data Size: 92KB - Virtual size: 111KB

.rsrc Size: 72KB - Virtual size: 69KB

.text
Size: 116KB - Virtual size: 113KB

.rdata
Size: 100KB - Virtual size: 97KB

.data
Size: 92KB - Virtual size: 111KB

.rsrc
Size: 72KB - Virtual size: 69KB