aac59c2ee3c4978801e132fb5aa622e3d5d2822a47c748cf35f69a11fbdaa98c

Sharing

Copy URL Twitter E-mail

General

Target

aac59c2ee3c4978801e132fb5aa622e3d5d2822a47c748cf35f69a11fbdaa98c
Size

724KB
MD5

67a159efd1065db4a5e28a1fd0b3ecb3
SHA1

22fcda6bb21866127534d1f41e806adf6f6e681f
SHA256

aac59c2ee3c4978801e132fb5aa622e3d5d2822a47c748cf35f69a11fbdaa98c
SHA512

95fd924a16931e08a50ab7af1069456593f06d3ac98ea5a3b85f1b09ebaa8b68026d5c76ec3e00b57f3a09ce6830d53a6d27080dc65867f3644ecf3f86ff53a8
SSDEEP

12288:HGUZO4hTsbg7+/jD8EPwdISriyD0i9Q7zvEo4CquCj+9bGjL:nZTeLDWISO/fn8x

Score

N/A

Malware Config

Signatures

Files

aac59c2ee3c4978801e132fb5aa622e3d5d2822a47c748cf35f69a11fbdaa98c
.exe windows x86

3604251552d69171b50bf67425a63159

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FtpSetCurrentDirectoryW
HttpSendRequestW

kernel32

GetUserDefaultLCID
GetProcAddress
EnumSystemCodePagesA
RtlUnwind
GetPrivateProfileIntA
TlsFree
VirtualQuery
GetCommandLineA
EnterCriticalSection
GetACP
GetStringTypeA
FlushFileBuffers
FreeEnvironmentStringsA
SetEnvironmentVariableA
GetProcessAffinityMask
CreateNamedPipeW
GetSystemDefaultLangID
DeleteCriticalSection
HeapFree
GetStringTypeW
VirtualFree
IsBadWritePtr
VirtualLock
MultiByteToWideChar
HeapSize
GetFileType
QueryPerformanceCounter
InterlockedExchange
GetModuleFileNameW
LeaveCriticalSection
IsValidLocale
GetTickCount
TlsSetValue
CloseHandle
GlobalDeleteAtom
VirtualUnlock
GetTimeZoneInformation
GetCurrentThreadId
GetStartupInfoW
SetStdHandle
GetCurrentThread
ReadFile
GetTimeFormatA
GetCPInfo
GetEnvironmentStrings
VirtualAlloc
GetSystemTimeAsFileTime
HeapDestroy
GetLastError
GetCurrentProcessId
GetCurrentProcess
VirtualProtect
GetSystemInfo
FreeEnvironmentStringsW
GetStartupInfoA
EnumSystemLocalesA
WriteFile
HeapReAlloc
TerminateProcess
LCMapStringA
ExitProcess
LCMapStringW
CompareStringA
InitializeCriticalSection
GetModuleFileNameA
HeapAlloc
LoadLibraryA
GetCommandLineW
GetConsoleCP
SetFilePointer
HeapCreate
CreateMutexA
SetHandleCount
GetProfileStringW
GetLocaleInfoA
UnhandledExceptionFilter
WideCharToMultiByte
GetOEMCP
IsValidCodePage
GetVersionExA
GetStdHandle
GetEnvironmentStringsW
GetModuleHandleA
SetLastError
OpenMutexA
TlsGetValue
GetDateFormatA
TlsAlloc
GetLocaleInfoW
CompareStringW

comctl32

ImageList_LoadImage
CreatePropertySheetPageA
ImageList_SetFlags
ImageList_DragLeave
DestroyPropertySheetPage
GetEffectiveClientRect
ImageList_EndDrag
ImageList_GetBkColor
ImageList_SetDragCursorImage
CreatePropertySheetPageW
ImageList_LoadImageA
ImageList_GetDragImage
ImageList_Draw
CreateMappedBitmap
ImageList_SetFilter
ImageList_DrawEx
InitCommonControlsEx
ImageList_SetOverlayImage
ImageList_Create
ImageList_Replace
ImageList_Read
ImageList_Remove

user32

ChangeDisplaySettingsA
CreateIconFromResourceEx
WINNLSGetEnableStatus
MapVirtualKeyExW
GetNextDlgGroupItem
SetWindowsHookExW
OpenDesktopW
SwapMouseButton
DdePostAdvise
DrawStateA
GetClassInfoW
LoadCursorW
GetClipboardFormatNameA
MessageBoxIndirectA
ReleaseDC
DlgDirSelectComboBoxExA
UnregisterDeviceNotification
MessageBoxExA
CreateWindowStationW
ImpersonateDdeClientWindow
RegisterClassExA
InternalGetWindowText
EnumPropsExW
GetMenuBarInfo
OpenInputDesktop
ScrollWindow
SetCapture
RegisterClassA
GetClipboardViewer
InSendMessageEx
LoadBitmapA
LoadMenuW
SendMessageW
ReuseDDElParam
SetScrollInfo
DlgDirListA
ScrollDC
GetComboBoxInfo
EnumDesktopsA
CopyAcceleratorTableA
TranslateMDISysAccel
GetClassNameA
GetTabbedTextExtentA
EnumWindowStationsW
EmptyClipboard
DrawCaption
EnumDisplaySettingsExA
DrawTextA

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 392KB - Virtual size: 389KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3604251552d69171b50bf67425a63159

Headers

File Characteristics

Imports

wininet

kernel32

comctl32

user32

Sections

.text Size: 180KB - Virtual size: 179KB

.rdata Size: 392KB - Virtual size: 389KB

.data Size: 136KB - Virtual size: 144KB

.rsrc Size: 12KB - Virtual size: 10KB

.text
Size: 180KB - Virtual size: 179KB

.rdata
Size: 392KB - Virtual size: 389KB

.data
Size: 136KB - Virtual size: 144KB

.rsrc
Size: 12KB - Virtual size: 10KB