abe736c0ce44f9a10f9add88b70e64aaf757363092aabf333c311c0905fa17a1

Sharing

Copy URL Twitter E-mail

General

Target

abe736c0ce44f9a10f9add88b70e64aaf757363092aabf333c311c0905fa17a1
Size

648KB
MD5

d44ca0f021e221e3c42f6931c99ad674
SHA1

8d6a9299f061a88dff91c27a114eaf612d0242fa
SHA256

abe736c0ce44f9a10f9add88b70e64aaf757363092aabf333c311c0905fa17a1
SHA512

195d7adc5d19ef592abaf2106ff644956a04e41420184fd5038ed1504a895cf0a6ff0175bdb2875cabef232deb5d4762a0daaea0a4e8591d7f8eb217229f4e8d
SSDEEP

12288:KuU30uj2Q7vCLYP3+kWYPpmW/We4dScsRbxVa4qNm7Grh5/zfWE:KWQ2Q7vIYP3+GpmW+LdScCbS4YFt5/zO

Score

N/A

Malware Config

Signatures

Files

abe736c0ce44f9a10f9add88b70e64aaf757363092aabf333c311c0905fa17a1
.exe windows x86

a68f4192f22e8ac4111c6f8ba832aa2e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseFontA
FindTextA
PrintDlgA
LoadAlterBitmap

wininet

FtpFindFirstFileW
InternetTimeFromSystemTimeA
InternetInitializeAutoProxyDll
InternetGetConnectedStateExW
FtpPutFileEx

user32

ShowCaret
SetFocus
RegisterClassExA
GetKeyState
UnhookWindowsHookEx
GetDesktopWindow
CascadeChildWindows
GetForegroundWindow
SetScrollInfo
CreateWindowExA
GetWindowLongA
SubtractRect
SystemParametersInfoA
GetInputState
RemovePropA
CharNextA
GetMenuDefaultItem
GetKeyNameTextA
RegisterClassA
DdeInitializeW
MessageBoxA
SetMenu
GetOpenClipboardWindow
GetAltTabInfo
ShowWindow
UnionRect
GetWindowThreadProcessId
DialogBoxParamA
CharToOemA
DestroyCursor
OpenWindowStationA
RegisterWindowMessageW
DefWindowProcW
WINNLSGetEnableStatus
LoadImageA
DestroyWindow
CopyImage
PtInRect
GetMessageExtraInfo
DispatchMessageW
LoadCursorA
DlgDirSelectExA
CloseWindow

kernel32

SetConsoleCtrlHandler
GetACP
lstrlenA
GetStdHandle
TlsGetValue
CompareStringA
HeapFree
lstrcatA
GetDiskFreeSpaceA
MultiByteToWideChar
OutputDebugStringA
LCMapStringA
IsBadReadPtr
FileTimeToDosDateTime
GetProcAddress
GetUserDefaultLCID
GetLocaleInfoW
FlushViewOfFile
SetHandleCount
EnumTimeFormatsW
CloseHandle
FreeEnvironmentStringsA
ReadFile
GetModuleFileNameA
GetConsoleMode
OutputDebugStringW
TlsAlloc
IsValidLocale
WritePrivateProfileStructA
VirtualProtect
GetStringTypeW
SetVolumeLabelW
OpenWaitableTimerA
WriteConsoleW
LoadLibraryA
GetLocaleInfoA
FlushConsoleInputBuffer
FlushFileBuffers
DebugActiveProcess
TerminateProcess
CompareFileTime
InterlockedDecrement
GetConsoleOutputCP
GetStartupInfoA
EnumSystemLocalesW
WriteConsoleA
GetEnvironmentStringsW
lstrcmp
EnterCriticalSection
GetSystemTimeAsFileTime
FreeLibrary
GetThreadPriorityBoost
IsDebuggerPresent
CreateThread
GetModuleFileNameW
InitializeCriticalSection
InterlockedExchange
SetEnvironmentVariableA
FindFirstFileW
GetNumberFormatW
FoldStringA
GetTimeZoneInformation
InterlockedIncrement
RemoveDirectoryW
GetCurrentThread
CreateEventW
GetModuleHandleA
ExitProcess
HeapDestroy
OpenMutexA
GetCommandLineA
ReleaseMutex
GetFileTime
GetCPInfo
GetAtomNameW
GetVersionExA
VirtualFree
DeleteCriticalSection
CreateMutexA
OpenFileMappingA
GetLastError
SetFilePointer
EnumResourceLanguagesW
TlsFree
GetEnvironmentStrings
LocalShrink
WideCharToMultiByte
DebugBreak
HeapValidate
LCMapStringW
RtlUnwind
GetCurrentProcess
WriteFile
EnumSystemLocalesA
SetVolumeLabelA
lstrlen
GetStringTypeA
GetConsoleCP
CreateFileA
CreateProcessA
FindFirstFileExW
LeaveCriticalSection
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnlockFileEx
GetDateFormatA
WaitForMultipleObjectsEx
WaitForMultipleObjects
GetTimeFormatA
VirtualAlloc
FreeEnvironmentStringsW
GetTickCount
SetStdHandle
HeapAlloc
IsValidCodePage
LoadLibraryW
SetLastError
HeapCreate
UnhandledExceptionFilter
TlsSetValue
GetOEMCP
InterlockedExchangeAdd
VirtualQuery
GetProcessHeap
RaiseException
WritePrivateProfileSectionA
HeapReAlloc
GetCurrentProcessId
GetCurrentThreadId
CompareStringW
GetFileType
FillConsoleOutputCharacterA

shell32

FindExecutableW

comctl32

ImageList_DrawEx
CreateToolbar
CreatePropertySheetPage
ImageList_DragLeave
CreateUpDownControl
ImageList_SetDragCursorImage
ImageList_Destroy
DrawInsert
ImageList_Create
InitCommonControlsEx
_TrackMouseEvent
ImageList_EndDrag
CreateToolbarEx
ImageList_GetFlags
ImageList_LoadImage
ImageList_Draw
ImageList_SetIconSize
CreateMappedBitmap
ImageList_DrawIndirect
ImageList_LoadImageA
ImageList_Copy
InitMUILanguage
DestroyPropertySheetPage

Sections

.text
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a68f4192f22e8ac4111c6f8ba832aa2e

Headers

File Characteristics

Imports

comdlg32

wininet

user32

kernel32

shell32

comctl32

Sections

.text Size: 228KB - Virtual size: 227KB

.rdata Size: 288KB - Virtual size: 287KB

.data Size: 108KB - Virtual size: 113KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 228KB - Virtual size: 227KB

.rdata
Size: 288KB - Virtual size: 287KB

.data
Size: 108KB - Virtual size: 113KB

.rsrc
Size: 20KB - Virtual size: 17KB