0989c013d0b0b02180b0e1419168f183265dee7b450c859f3370c82f0a7e57a8

Sharing

Copy URL

Twitter E-mail

General

Target

0989c013d0b0b02180b0e1419168f183265dee7b450c859f3370c82f0a7e57a8
Size

624KB
MD5

99c0a7a1ce58ba922509e6dd7ac8f0fa
SHA1

0f7f9a783b0dec07cccaeed220897a9e5c04fdc1
SHA256

0989c013d0b0b02180b0e1419168f183265dee7b450c859f3370c82f0a7e57a8
SHA512

766b0e25e9913aed89707b4e8a809abf9d5f68bb36b713b60b8271a1e1f7a550794f5c6b75e713511e3a4a428799ef8f4b17cb7c715b34f5daac655acec46985
SSDEEP

12288:oUWttO7IVaNNC7HfkfzMrAeQG7tWYECUrY1u1oIJ:dOtOkVaN47/krAAeP8YECUeu5J

Score

N/A

Malware Config

Signatures

Files

0989c013d0b0b02180b0e1419168f183265dee7b450c859f3370c82f0a7e57a8
.exe windows x86

a22e3feb91dc3e5cfe900b8ea2766e79

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeKeepStringHandle
WinHelpA
HideCaret
CreateDialogIndirectParamW
IsDialogMessageA
WinHelpW
SetKeyboardState
InSendMessageEx
LoadMenuIndirectW
wvsprintfA
CreateWindowExA
EnumDisplayMonitors
CreateMDIWindowW
CloseWindow
CallMsgFilterA
SetProcessWindowStation
RegisterDeviceNotificationA
GetWindowRect
MoveWindow
RegisterClassA
SendMessageTimeoutW
GetClipCursor
DestroyWindow
CharLowerBuffW
MessageBoxA
GetWindowLongW
DefWindowProcA
RegisterClassExA
GetTopWindow
ShowWindow
DrawFrame
LoadStringA
EnumDisplayDevicesA

comctl32

ImageList_LoadImageW
ImageList_LoadImageA
ImageList_LoadImage
ImageList_SetImageCount
CreateUpDownControl
CreatePropertySheetPageW
DrawStatusText
ImageList_GetImageRect
ImageList_EndDrag
ImageList_GetImageInfo
InitCommonControlsEx
DrawStatusTextW
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_BeginDrag
CreateMappedBitmap
CreateStatusWindowW
DrawStatusTextA
ImageList_DragLeave
ImageList_Remove
ImageList_ReplaceIcon

kernel32

VirtualQuery
FreeEnvironmentStringsA
GetUserDefaultLCID
GetCurrentProcessId
GetTimeFormatA
VirtualFree
FindFirstFileExA
GetEnvironmentStrings
SetFilePointer
SetLastError
LoadLibraryA
CloseHandle
FindNextFileW
GetConsoleTitleA
GetCurrentProcess
DeleteCriticalSection
VirtualAlloc
ReadConsoleOutputA
MultiByteToWideChar
FindResourceExW
GetDriveTypeW
IsValidCodePage
UnhandledExceptionFilter
GetCommandLineA
GetConsoleTitleW
PulseEvent
lstrcmpA
GetConsoleCursorInfo
HeapFree
SetConsoleTitleA
CreateMutexA
TlsFree
LocalFileTimeToFileTime
GetCurrentThreadId
ReadFile
FoldStringW
IsBadWritePtr
SetEnvironmentVariableW
HeapCreate
HeapDestroy
GetSystemInfo
SetStdHandle
FindNextChangeNotification
DebugBreak
SetEnvironmentVariableA
GetModuleFileNameA
LCMapStringA
GetLastError
DeleteFiber
GetEnvironmentStringsW
GetProcessAffinityMask
GetTimeZoneInformation
SleepEx
EnterCriticalSection
FreeEnvironmentStringsW
GetTickCount
EnumSystemCodePagesA
SetCurrentDirectoryW
GetStdHandle
CreateSemaphoreW
TlsGetValue
FileTimeToLocalFileTime
VirtualProtect
GetDiskFreeSpaceA
WritePrivateProfileSectionW
GetComputerNameW
HeapSize
EnumCalendarInfoExW
FlushConsoleInputBuffer
GetVersionExA
SuspendThread
ExitProcess
RtlUnwind
GetModuleHandleA
GetFileType
DuplicateHandle
GetDateFormatA
GetACP
TerminateProcess
GetThreadSelectorEntry
QueryPerformanceCounter
TlsSetValue
OpenMutexA
GetLocaleInfoA
UnlockFileEx
GlobalLock
GlobalAddAtomW
SetFileAttributesW
GetComputerNameA
OpenFile
GetFileAttributesExW
GetTempFileNameA
lstrcpyA
GetOEMCP
GetProcAddress
EnumSystemLocalesA
GetPrivateProfileSectionNamesW
GetFullPathNameW
WriteFile
CreateThread
GetCurrencyFormatA
GetProfileIntW
HeapAlloc
CompareStringA
lstrcmpW
GetSystemTimeAsFileTime
CompareStringW
GetCPInfo
InterlockedExchange
LCMapStringW
GetPrivateProfileStructW
InitializeCriticalSection
GetStringTypeA
SetConsoleMode
FlushFileBuffers
GetStartupInfoA
HeapReAlloc
ReadConsoleOutputW
RemoveDirectoryW
IsValidLocale
GetCurrentThread
SetHandleCount
GetLocaleInfoW
CreateNamedPipeA
WideCharToMultiByte
TlsAlloc
GetStringTypeW
UnlockFile
FileTimeToSystemTime
LeaveCriticalSection

comdlg32

ChooseFontA
ReplaceTextW
PrintDlgA
GetSaveFileNameW

Sections

.text
Size: 148KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 308KB - Virtual size: 306KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 124KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a22e3feb91dc3e5cfe900b8ea2766e79

Headers

File Characteristics

Imports

user32

comctl32

kernel32

comdlg32

Sections

.text Size: 148KB - Virtual size: 145KB

.rdata Size: 308KB - Virtual size: 306KB

.data Size: 124KB - Virtual size: 127KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 148KB - Virtual size: 145KB

.rdata
Size: 308KB - Virtual size: 306KB

.data
Size: 124KB - Virtual size: 127KB

.rsrc
Size: 40KB - Virtual size: 39KB