f97a5a376b664140b1089da8c839fa3b45f7ee11d4e82f9042cb99a1c00ec4fc

Sharing

Copy URL Twitter E-mail

General

Target

f97a5a376b664140b1089da8c839fa3b45f7ee11d4e82f9042cb99a1c00ec4fc
Size

711KB
MD5

72ebcac994d10b92b7d65366fbf6d64e
SHA1

a77bb9b17ab4d1a6ee9fa0e3e708b0f7c5042ff5
SHA256

f97a5a376b664140b1089da8c839fa3b45f7ee11d4e82f9042cb99a1c00ec4fc
SHA512

699a11ae704ffe40e5436250967daf3a461dcbfc20d2cb6609311720f40af2697c68046188981a4d8c9b7563a3eac2f7fce67807d5f40629a865dc8140e81b55
SSDEEP

12288:JWffk7FAzHD1PDQH7/ZdX0LIpZFLjWLgIMxN1+USNb2wflG2oWq0qP2EzPl6iX6Z:qcSzHBbQTZTLjWLg/xWNb2yG2oIqP1NG

Score

N/A

Malware Config

Signatures

Files

f97a5a376b664140b1089da8c839fa3b45f7ee11d4e82f9042cb99a1c00ec4fc
.exe windows x86

32a0263b5217af9a7381b9e58b7c0086

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptAcquireContextA
RegQueryValueA
CryptGetKeyParam
CryptExportKey
InitiateSystemShutdownW
RegQueryInfoKeyA
RegEnumKeyExW
RegEnumValueW
CryptDestroyHash
LookupPrivilegeValueA
CreateServiceW
InitiateSystemShutdownA

user32

DestroyWindow
EnumThreadWindows
RegisterClassExA
IsClipboardFormatAvailable
RegisterClassA
ShowWindow
GetCursorPos
CreateWindowExW
MessageBoxW
DefWindowProcW
SetWindowsHookW

gdi32

GetBitmapBits
GetKerningPairsW
DeleteEnhMetaFile
GetSystemPaletteEntries
GetClipRgn
GetTextExtentExPointW
GetRandomRgn
CreateCompatibleDC
EndPath
CopyEnhMetaFileA
GetMetaRgn
CreateICW
ExtCreateRegion

comctl32

ImageList_SetFilter
DestroyPropertySheetPage
ImageList_SetBkColor
InitCommonControlsEx
ImageList_Copy
ImageList_GetImageInfo
CreatePropertySheetPageA
CreateStatusWindowA
ImageList_Add
CreateUpDownControl

kernel32

GetThreadTimes
OutputDebugStringW
GetConsoleCP
InterlockedCompareExchange
SetEnvironmentVariableA
SetStdHandle
InterlockedDecrement
GetStdHandle
DeleteCriticalSection
GetSystemTimeAsFileTime
GetModuleFileNameW
IsBadReadPtr
IsValidLocale
GetUserDefaultLCID
QueryPerformanceCounter
SetConsoleTitleA
MultiByteToWideChar
IsDebuggerPresent
GetCurrentProcess
GetTimeZoneInformation
TlsFree
GetEnvironmentStringsW
GetLocaleInfoA
FreeLibrary
GetCommandLineA
GlobalFindAtomW
FreeEnvironmentStringsW
lstrlenA
GetFileType
SetHandleCount
GetLastError
WideCharToMultiByte
WriteFile
TlsGetValue
InterlockedExchange
SetConsoleCtrlHandler
GetOEMCP
HeapValidate
HeapAlloc
SetUnhandledExceptionFilter
WriteConsoleA
RtlUnwind
LCMapStringA
GetLocaleInfoW
LoadLibraryW
HeapDestroy
TerminateProcess
CreateFileA
InitializeCriticalSection
TlsAlloc
EnumSystemLocalesA
HeapReAlloc
CompareStringA
GetModuleHandleA
FreeEnvironmentStringsA
CloseHandle
CompareStringW
ExitProcess
EnterCriticalSection
GetCurrentThread
GetConsoleMode
FlushFileBuffers
SetFilePointer
GetTimeFormatA
LCMapStringW
GetModuleFileNameA
HeapFree
DebugBreak
GetACP
GetCPInfo
LeaveCriticalSection
GetDateFormatA
TlsSetValue
GetStringTypeW
OutputDebugStringA
GetVersionExA
GetProcessHeap
GetConsoleOutputCP
GetStartupInfoA
LoadLibraryA
ReadFile
GetCurrentThreadId
GetPrivateProfileSectionNamesW
CreateMutexA
IsValidCodePage
VirtualFree
GetCurrentProcessId
RaiseException
GetTickCount
SetLastError
GetEnvironmentStrings
OpenMutexA
InterlockedIncrement
VirtualAlloc
HeapCreate
WriteConsoleW
VirtualQuery
UnhandledExceptionFilter
GetProcAddress
GetStringTypeA

Sections

.text
Size: 306KB - Virtual size: 305KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 240KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32a0263b5217af9a7381b9e58b7c0086

Headers

File Characteristics

Imports

advapi32

user32

gdi32

comctl32

kernel32

Sections

.text Size: 306KB - Virtual size: 305KB

.rdata Size: 240KB - Virtual size: 248KB

.data Size: 111KB - Virtual size: 111KB

.rsrc Size: 53KB - Virtual size: 53KB

.text
Size: 306KB - Virtual size: 305KB

.rdata
Size: 240KB - Virtual size: 248KB

.data
Size: 111KB - Virtual size: 111KB

.rsrc
Size: 53KB - Virtual size: 53KB