092770122f6f7e06ea4dc27f8b8930a24c013bd67a4be9e39d60bda7bfaf30a9

Sharing

Copy URL Twitter E-mail

General

Target

092770122f6f7e06ea4dc27f8b8930a24c013bd67a4be9e39d60bda7bfaf30a9
Size

548KB
MD5

7470b29c15bf92985f1cfb5b65ffe377
SHA1

f55a90294e7bfa6cd55328572ff2182028b9ae91
SHA256

092770122f6f7e06ea4dc27f8b8930a24c013bd67a4be9e39d60bda7bfaf30a9
SHA512

b94d628c6b4f78597b160aa8758458afb1c7726ee9ec83096170a8af1848b49c0c57751f89657e57e360e991e5051aaf59aa86ad188408bd2903235563cd6d1f
SSDEEP

12288:BLuYZsRfTHzU0YqjgnEc++HWzeZOBO9JSi7y7ndABPJEl1ktu:BLuYeRLHA07jO++CeZOBQScy7n4hwk0

Score

N/A

Malware Config

Signatures

Files

092770122f6f7e06ea4dc27f8b8930a24c013bd67a4be9e39d60bda7bfaf30a9
.exe windows x86

5b9e4850bd9adafce9d029bf3153ba5d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleInputA
GetProcessHeaps
GetFileType
ReadFile
HeapCreate
SetStdHandle
GetSystemTimeAsFileTime
CompareFileTime
CreateFileMappingA
FlushFileBuffers
VirtualQuery
GetVersionExA
CreateMutexW
GetCurrentProcess
HeapDestroy
LeaveCriticalSection
GetCurrentThread
EnterCriticalSection
RaiseException
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
GetCommandLineA
EnumResourceNamesW
LCMapStringW
InterlockedDecrement
GetDriveTypeA
GetModuleHandleW
lstrcmpiA
lstrcmpW
UnhandledExceptionFilter
GetStartupInfoA
GetStringTypeA
InterlockedIncrement
OpenMutexW
CommConfigDialogW
GetConsoleTitleW
MultiByteToWideChar
CreateMailslotA
GetCommandLineW
GetTickCount
WaitForSingleObjectEx
FindResourceExA
GetStartupInfoW
TlsGetValue
TlsSetValue
HeapReAlloc
ResetEvent
GetMailslotInfo
RtlFillMemory
QueryPerformanceCounter
GetShortPathNameA
GetStringTypeExA
DeleteFileW
GlobalGetAtomNameW
GetShortPathNameW
SetLastError
HeapFree
GetConsoleCP
GetStdHandle
GetTimeFormatW
CreateMutexA
lstrcpy
GetCurrentThreadId
GetComputerNameA
SetPriorityClass
GetProcAddress
GetEnvironmentVariableA
GlobalFree
GetEnvironmentStrings
EnumResourceTypesA
GetTimeZoneInformation
LockResource
GlobalHandle
GetModuleHandleA
SetHandleCount
LCMapStringA
EnumSystemLocalesW
OpenMutexA
ReadConsoleA
GetStringTypeW
InterlockedExchange
WideCharToMultiByte
IsBadWritePtr
GetLocalTime
GetProfileSectionW
LoadLibraryA
GetVolumeInformationW
TerminateProcess
VirtualAlloc
WriteConsoleInputW
FindFirstFileW
ConvertDefaultLocale
EnumResourceLanguagesA
CreateWaitableTimerA
EnumResourceTypesW
GlobalFlags
WriteProfileStringA
GetCurrentProcessId
GetEnvironmentVariableW
InitializeCriticalSection
CompareStringA
GetTempFileNameA
GetModuleFileNameW
GetSystemTime
FileTimeToSystemTime
GetVersion
LockFile
CompareStringW
SetEnvironmentVariableA
WriteProfileSectionW
TlsAlloc
FreeEnvironmentStringsW
TlsFree
GetLongPathNameA
CloseHandle
GetLastError
RtlUnwind
EnumCalendarInfoA
DeleteCriticalSection
IsValidLocale
GetCPInfo
GetEnvironmentStringsW
lstrcpyW
GetModuleFileNameA
ExpandEnvironmentStringsA
SetThreadContext
VirtualFree
VirtualProtectEx
ExitProcess
HeapAlloc
WriteFile
AddAtomW
SetFilePointer

advapi32

CryptSignHashA
CryptEncrypt
CreateServiceW
CreateServiceA
RegSetValueExA
RegQueryValueExW
LookupPrivilegeNameW
RegOpenKeyW
RegLoadKeyW
LookupPrivilegeDisplayNameW
CryptEnumProviderTypesW
GetUserNameA
CryptAcquireContextA
AbortSystemShutdownA
AbortSystemShutdownW
CryptSetProviderA
LogonUserA
LookupPrivilegeDisplayNameA
CryptDestroyHash
CryptEnumProvidersA

shell32

SHGetDesktopFolder
ShellAboutA
SHFileOperation
ExtractIconEx
RealShellExecuteExA

comdlg32

FindTextW
PrintDlgW
ChooseFontW

wininet

UnlockUrlCacheEntryFileA
InternetFindNextFileA
FtpCreateDirectoryA
InternetSecurityProtocolToStringW
InternetGetConnectedStateEx
InternetAutodialHangup
InternetGetLastResponseInfoW
IsUrlCacheEntryExpiredW

comctl32

DrawStatusText
ImageList_LoadImage
ImageList_SetFilter
CreatePropertySheetPageW
ImageList_Replace
CreateStatusWindow
CreateMappedBitmap
ImageList_DragShowNolock
DrawStatusTextW
ImageList_SetDragCursorImage
ImageList_DrawIndirect
ImageList_Remove
ImageList_SetBkColor
ImageList_Copy
ImageList_Write
ImageList_GetImageCount
ImageList_SetIconSize
ImageList_GetImageInfo
InitCommonControlsEx
ImageList_SetOverlayImage

user32

EnumDesktopWindows
LoadMenuW
DispatchMessageW
InsertMenuW
CascadeWindows
EnumDisplayMonitors
SwapMouseButton
GetWindowTextA
DlgDirSelectComboBoxExW
InternalGetWindowText
EndPaint
GetKeyState
WINNLSGetIMEHotkey
ShowWindow
IntersectRect
GetMonitorInfoA
DdeReconnect
ClipCursor
DdeSetQualityOfService
CreateWindowExW
GetWindowThreadProcessId
CharLowerBuffW
CharPrevW
GetNextDlgTabItem
GetWindowLongW
ExitWindowsEx
RegisterClassA
CopyRect
DeferWindowPos
EnumWindowStationsW
RegisterDeviceNotificationW
SwitchToThisWindow
SetSystemCursor
DefMDIChildProcA
DestroyWindow
MessageBoxW
DrawAnimatedRects
OpenInputDesktop
SetWindowTextA
SendMessageTimeoutA
SetCursor
SetWindowTextW
GetWindowTextW
GetKeyboardType
EnumDisplaySettingsExA
RegisterClassExA
TranslateMessage
CharUpperBuffA
DefWindowProcW
DdeInitializeW
CharToOemBuffW
CreateIconFromResourceEx
CheckMenuItem

Sections

.text
Size: 160KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b9e4850bd9adafce9d029bf3153ba5d

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

comdlg32

wininet

comctl32

user32

Sections

.text Size: 160KB - Virtual size: 157KB

.rdata Size: 256KB - Virtual size: 254KB

.data Size: 108KB - Virtual size: 131KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 160KB - Virtual size: 157KB

.rdata
Size: 256KB - Virtual size: 254KB

.data
Size: 108KB - Virtual size: 131KB

.rsrc
Size: 20KB - Virtual size: 17KB