f52c945dba45ca976be608672fde490b99974191338e49d78f6024ca3f9021a4

Sharing

Copy URL

Twitter E-mail

General

Target

f52c945dba45ca976be608672fde490b99974191338e49d78f6024ca3f9021a4
Size

1.1MB
MD5

f693a42a25f4b522933ee51a37b3c4d1
SHA1

5466212ca20ed8dc20f67f0b56352b71e106b81e
SHA256

f52c945dba45ca976be608672fde490b99974191338e49d78f6024ca3f9021a4
SHA512

4a8cf99f275e41ae4e4272cd04f019179998b2b2871c481087bb9ac8cd5cf211dc55a5d48a4aa594d7ea4361f1a798ece2cbff3d99cd58dd73643a826dc652f5
SSDEEP

12288:QUOGcOoajUEVTfoF/llHJElFH3oHpZNSInY:ZhjUE1QdlC3APS

Score

N/A

Malware Config

Signatures

Files

f52c945dba45ca976be608672fde490b99974191338e49d78f6024ca3f9021a4
.exe windows x86

117d16bf0cbac43e50d793293cdd2ada

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
LeaveCriticalSection
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSectionAndSpinCount
lstrlenA
HeapSetInformation
GetVersionExW
GetSystemDirectoryW
GetProcAddress
EnterCriticalSection
DeleteCriticalSection
CreateThread
CloseHandle
GetCommandLineW
VirtualAllocEx
GetDriveTypeW
GetCurrentThreadId
GetTickCount
GetDriveTypeA
GetFileAttributesW
GlobalAlloc
GetLastError
GetStartupInfoA
GetCommandLineA
Sleep
GetModuleHandleW
LoadLibraryW
GetModuleHandleA
GetVersion
GetCurrentProcessId
lstrlenW
GetFileAttributesA
GetProcessHeap
HeapAlloc
LoadLibraryA

user32

LoadBitmapA
IsWindowVisible
SetWindowLongW
SendMessageW
GetMenu
GetParent
DestroyIcon
EnableMenuItem
GetDlgItem
UpdateWindow
IsWindow
LoadIconA
LoadBitmapW
DestroyWindow
GetSystemMetrics
SendMessageA
GetDC
LoadIconW
ShowWindow

gdi32

CancelDC
SetBkMode
BeginPath
SetTextColor
GetLayout
SetTextAlign
DeleteDC
CreateSolidBrush
CloseEnhMetaFile
CloseFigure
GetBkColor
SelectObject
DeleteEnhMetaFile
GdiFlush
GetDCPenColor
AddFontResourceW
CreateCompatibleDC
CloseMetaFile
AbortPath
CreatePatternBrush
GetDCBrushColor
CreateMetaFileA
AbortDoc
EndDoc
DeleteColorSpace
FlattenPath
GetColorSpace
CreateMetaFileW
EndPath
FillPath
DeleteMetaFile
GetFontLanguageInfo
SaveDC
GetEnhMetaFileA
GetEnhMetaFileW
AddFontResourceA
GetGraphicsMode

advapi32

RegOpenKeyA
RegQueryValueExA

ole32

CoUninitialize
CoInitializeEx
CLSIDFromString

winmm

timeGetTime

Sections

.text
Size: 960KB - Virtual size: 960KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

117d16bf0cbac43e50d793293cdd2ada

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

winmm

Sections

.text Size: 960KB - Virtual size: 960KB

.rdata Size: 33KB - Virtual size: 33KB

.data Size: 5KB - Virtual size: 5KB

.rsrc Size: 98KB - Virtual size: 98KB

.text
Size: 960KB - Virtual size: 960KB

.rdata
Size: 33KB - Virtual size: 33KB

.data
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 98KB - Virtual size: 98KB