35416a193b6a35bffc1b499a449cf0cc0a55c57872d5253a2687a00883869b58

Sharing

Copy URL

Twitter E-mail

General

Target

35416a193b6a35bffc1b499a449cf0cc0a55c57872d5253a2687a00883869b58
Size

732KB
MD5

c290f0295d967d7176fab47892f624bc
SHA1

c8af38b7666e21d708d9d84b4ef69c5af14b93f3
SHA256

35416a193b6a35bffc1b499a449cf0cc0a55c57872d5253a2687a00883869b58
SHA512

ef5e9ce6e574f48d061e0a7ad0fc8dc72788a52db1c09e8051e68302f8e0ff1b876203bd596661ed3c1d488e608b5af549652e2ce30d886f9f15e212a07b1439
SSDEEP

12288:lIXSWnSS5JYeXL2ol1aPTyh7I3KBHiqUu9tlQXUl+nk4zUy7bEJnebX:lI9nSSs9ohI3O9tqk4QyPgneT

Score

N/A

Malware Config

Signatures

Files

35416a193b6a35bffc1b499a449cf0cc0a55c57872d5253a2687a00883869b58
.exe windows x86

a1078bb8b1af8add4d9823d8922b3718

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
LCMapStringA
GetModuleFileNameW
TerminateProcess
InterlockedDecrement
DeleteCriticalSection
UnhandledExceptionFilter
HeapFree
GetCurrentThreadId
TlsSetValue
GetCurrentProcess
GetLastError
SetFilePointer
GetEnvironmentStrings
CompareStringA
FreeEnvironmentStringsA
EnterCriticalSection
GetVersion
CloseHandle
FlushFileBuffers
IsBadWritePtr
GetSystemTime
SetStdHandle
InterlockedExchange
GetVersionExW
GetEnvironmentStringsW
GetModuleHandleA
WideCharToMultiByte
GetLocalTime
GetStdHandle
GetStringTypeW
GetStartupInfoA
CompareStringW
VirtualQuery
CreateMutexA
GetCommandLineW
HeapReAlloc
SetHandleCount
GetFileAttributesA
GetCurrentProcessId
HeapAlloc
QueryPerformanceCounter
MultiByteToWideChar
FreeEnvironmentStringsW
GetCurrentThread
GetCommandLineA
HeapCreate
GetSystemTimeAsFileTime
LCMapStringW
GetProcAddress
VirtualAlloc
WriteFile
GetModuleFileNameA
LoadLibraryA
InterlockedIncrement
GetTickCount
lstrcmp
TlsAlloc
GetStringTypeA
WriteConsoleA
GetFileType
ExitProcess
RtlUnwind
SetLastError
FillConsoleOutputAttribute
FlushInstructionCache
SetEnvironmentVariableA
GetAtomNameA
LeaveCriticalSection
GetStartupInfoW
VirtualFree
ReadFile
InitializeCriticalSection
GlobalSize
OpenMutexA
GetTimeZoneInformation
GetCPInfo
TlsGetValue
TlsFree

gdi32

GetBkColor
CreateDCW
GetObjectW
OffsetViewportOrgEx
DeleteDC
GetCharWidthA
FlattenPath
GetCharABCWidthsA
PolyDraw
FillRgn
UpdateColors
SetMapMode
Pie
PlgBlt
GetOutlineTextMetricsW
GetDeviceCaps
CreateEllipticRgn
SetWinMetaFileBits
SetICMProfileW
GetClipRgn
Polyline
StrokeAndFillPath
ChoosePixelFormat
GetTextExtentPoint32W
GetDeviceGammaRamp
GetRandomRgn

comctl32

InitMUILanguage
ImageList_Merge
CreateStatusWindowA
ImageList_SetFilter
ImageList_Destroy
ImageList_EndDrag
ImageList_DragShowNolock
CreateUpDownControl
ImageList_SetIconSize
ImageList_GetFlags
InitCommonControlsEx
CreateMappedBitmap

shell32

DragFinish
SHGetFileInfoW
DragQueryFileW
ExtractIconExA
ExtractAssociatedIconExW

user32

ValidateRect
RegisterClassA
FindWindowExW
DefDlgProcA
MonitorFromPoint
DdeCreateStringHandleW
WinHelpW
GetMenuItemInfoW
SetUserObjectSecurity
DdeSetUserHandle
CharNextW
IsWindow
SetWindowContextHelpId
GetUpdateRgn
DestroyCursor
IsRectEmpty
RegisterClassExA
CharToOemBuffW

advapi32

CryptGenKey
LogonUserW
CryptGetHashParam
LookupPrivilegeDisplayNameW
LookupAccountNameW
CryptDecrypt
CryptEnumProvidersA
CryptSetProviderExW
StartServiceA
LookupPrivilegeNameA
CryptSetProviderExA
LookupPrivilegeValueW
RegSetValueExA
DuplicateToken
LogonUserA
CryptDestroyHash
RegQueryValueExA
RegDeleteKeyA

wininet

InternetSecurityProtocolToStringA
InternetGetCookieA
InternetDial
InternetCrackUrlW
UpdateUrlCacheContentPath
GopherGetLocatorTypeA

Sections

.text
Size: 148KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 404KB - Virtual size: 401KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1078bb8b1af8add4d9823d8922b3718

Headers

File Characteristics

Imports

kernel32

gdi32

comctl32

shell32

user32

advapi32

wininet

Sections

.text Size: 148KB - Virtual size: 145KB

.rdata Size: 404KB - Virtual size: 401KB

.data Size: 132KB - Virtual size: 128KB

.rsrc Size: 44KB - Virtual size: 40KB

.text
Size: 148KB - Virtual size: 145KB

.rdata
Size: 404KB - Virtual size: 401KB

.data
Size: 132KB - Virtual size: 128KB

.rsrc
Size: 44KB - Virtual size: 40KB