b40cc9c4770b9554755875d444f82e42b8fcd391f67043c2b69186dbf0eabb1d

Sharing

Copy URL Twitter E-mail

General

Target

b40cc9c4770b9554755875d444f82e42b8fcd391f67043c2b69186dbf0eabb1d
Size

673KB
MD5

d2d11c464545020f3463fff53dad27bb
SHA1

d7350f3c989efe49a58b72a219058f8e5a5c8a6f
SHA256

b40cc9c4770b9554755875d444f82e42b8fcd391f67043c2b69186dbf0eabb1d
SHA512

5f9c7a55d2eb64dcd1993d75a273e3945e2ac34b0c4696c1957acdc83c9ce797586d5292423483f6752840a048ba83b68cd0d96d8ad1747eeec6c09f47d45dd3
SSDEEP

12288:EF/s3st/IY8By3Lxk+1uZaPzwcQeiEJCp:EF/s8iPcb00cgxCp

Score

N/A

Malware Config

Signatures

Files

b40cc9c4770b9554755875d444f82e42b8fcd391f67043c2b69186dbf0eabb1d
.exe windows x86

60beebf7ebfc73b91e00a1805e74a29d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumDisplaySettingsA
UnregisterClassW
IsWindowVisible
RegisterWindowMessageA
GetAncestor
DefWindowProcW
UnionRect

oleaut32

SetErrorInfo
SysAllocStringLen

advapi32

GetSecurityInfo
CreateServiceW
ImpersonateNamedPipeClient
OpenThreadToken
CryptCreateHash
NotifyChangeEventLog
CryptAcquireContextW
CopySid
GetSecurityDescriptorDacl
RegRestoreKeyW
CryptGetProvParam

shell32

DragAcceptFiles
Shell_NotifyIconA
SHChangeNotify
SHFileOperationA

comctl32

ImageList_DrawEx
ImageList_Create
_TrackMouseEvent
ImageList_GetDragImage

kernel32

lstrcmpiA
GetConsoleCursorInfo
CopyFileExW
WriteConsoleOutputCharacterA
FillConsoleOutputCharacterA
EnumCalendarInfoW
WaitNamedPipeA
QueryDosDeviceW
IsBadWritePtr
GetVolumeInformationW
LocalReAlloc
SetCommTimeouts
GenerateConsoleCtrlEvent
GetFileInformationByHandle
PeekNamedPipe
LoadLibraryExA
ExitProcess
GetEnvironmentVariableW
FindFirstFileW
VirtualAlloc
GetModuleHandleA
SetHandleCount
EndUpdateResourceA
SetTimeZoneInformation

msvcrt

_mbsncmp
wcstok
_write
_wcslwr
_strcmpi
setvbuf
tolower
_iob
fflush
fwscanf
_vsnprintf
_wsopen
abort
strncpy
_wctime
getenv
_strupr
_fsopen
wcsncmp
wcsspn
freopen

Sections

.text
Size: 324KB - Virtual size: 323KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60beebf7ebfc73b91e00a1805e74a29d

Headers

File Characteristics

Imports

user32

oleaut32

advapi32

shell32

comctl32

kernel32

msvcrt

Sections

.text Size: 324KB - Virtual size: 323KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 324KB - Virtual size: 323KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 32KB - Virtual size: 31KB