7e8e748f39b0bff7dd70eee3c1d08241565c07ce9bfe687c18ee727cfb2bc5cf

Sharing

Copy URL Twitter E-mail

General

Target

7e8e748f39b0bff7dd70eee3c1d08241565c07ce9bfe687c18ee727cfb2bc5cf
Size

97KB
MD5

a20722e4bd3a6a35c8dfbb99f2cad8c0
SHA1

8eef1361b6f8a464fc7170deaebac07dd5d681c6
SHA256

7e8e748f39b0bff7dd70eee3c1d08241565c07ce9bfe687c18ee727cfb2bc5cf
SHA512

3a25eee40d58a84cad7d12fa632c2fa2690a8a7ee2448ce3b4804e34eeb32bc83bd5262a70abfa1f40e127aeadc65238f49e40273de9e7a1012bcf6d816a0f5c
SSDEEP

3072:woJMMOHwifJW+8kKgNOiLHWLmUdyqi1KSqkJZY:wolOtkHgNOiLqyqiYPK

Score

N/A

Malware Config

Signatures

Files

7e8e748f39b0bff7dd70eee3c1d08241565c07ce9bfe687c18ee727cfb2bc5cf
.exe windows x86

570b9c7f2346148dac5c4b364ea763a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
DeleteCriticalSection
UnhandledExceptionFilter
GlobalFree
HeapSetInformation
GetTempFileNameA
FindNextFileA
GlobalLock
GetCurrentThreadId
GetSystemTimeAsFileTime
GetStdHandle
GetExitCodeProcess
FreeLibrary
SetFileTime
SetFilePointer
GlobalAlloc
InterlockedExchange
GetTempPathA
GetStartupInfoA
CopyFileA
LeaveCriticalSection
QueryPerformanceCounter
MulDiv
GetFileAttributesA
EnterCriticalSection
GetFileSize
TerminateProcess
lstrlenA
CloseHandle
lstrcmpiA
CreateThread
WaitForSingleObject
FindFirstFileA
SetUnhandledExceptionFilter
GetCurrentDirectoryA
GetFullPathNameA
SetCurrentDirectoryA
GlobalUnlock
GetACP
Sleep
GlobalHandle
SetFileAttributesA
FindClose
InitializeCriticalSection
ReadFile
WriteFile
MultiByteToWideChar
GetCurrentProcess
DeleteFileA
CreateProcessA
ExitProcess
ExpandEnvironmentStringsA
WideCharToMultiByte
LoadLibraryA
RtlUnwind
GetModuleHandleA
GetFileTime
lstrcpyA
GetCurrentProcessId
GetVersionExA
VirtualProtect
LoadLibraryExA
GlobalFindAtomW
GetProcAddress
ExitThread
GetCurrentThread
GetTickCount
CreateFileA

user32

DestroyMenu
ShowWindow
SetCursor
DispatchMessageA
GetDC
SetWindowTextA
GetWindowRect
GetClientRect
ValidateRect
GetDlgItem
TranslateMessage
SetScrollRange
LoadIconA
PostMessageA
CreateWindowExA
GetSubMenu
CreateDialogParamA
PtInRect
GetMessageA
GetDesktopWindow
ReleaseCapture
SetClipboardData
SendMessageA
LoadStringA
TranslateAcceleratorA
CloseClipboard
SetScrollInfo
SetCapture
GetWindowTextLengthA
MessageBoxA
SetDlgItemTextA
SetWindowPos
SetFocus
EmptyClipboard
PeekMessageA
RedrawWindow
GetDlgItemTextA
DialogBoxParamA
EndDialog
CharNextA
ReleaseDC
DestroyWindow
DefWindowProcA
EndPaint
DrawTextA
CharPrevA
InvalidateRect
SendDlgItemMessageA
ScrollWindow
EnableMenuItem
PostQuitMessage
GetSysColor
OpenClipboard
SetWindowLongA
FillRect
ClientToScreen
EnableWindow
BeginPaint

gdi32

SetTextColor
CreateSolidBrush
CreateFontA
AbortDoc
ExtTextOutA
SetROP2
LineTo
SetBkColor
CreatePen
ExtTextOutW
EndPage
GetTextExtentPointA
GetTextExtentPoint32A
GetStockObject
DeleteDC
SelectObject
Rectangle
MoveToEx

comdlg32

ChooseFontA
GetSaveFileNameA
PrintDlgA
GetOpenFileNameA

advapi32

RegCloseKey
RegQueryValueExA
RegSetValueExA
RegCreateKeyA
RegDeleteValueA
RegOpenKeyA
RegOpenKeyExA

msvcrt

isdigit
atol
strtoul
isalpha
toupper
_snprintf
_ismbblead
__badioinfo
memmove
_errno
__p__fmode
_fileno
_strnicmp
_getcwd
_write
free
_lseeki64
memset
_initterm
_isatty
_ltoa
strchr
malloc
strcspn
_acmdln
strtok
_iob
_strdup
_exit
_itoa
__setusermatherr
atoi
__getmainargs
__pioinfo
_cexit
__p__commode
exit
strstr
strncmp
_controlfp
isleadbyte
_mkdir
tolower
memcpy
wcspbrk
calloc
strrchr
_XcptFilter
?terminate@@YAXXZ
_stricmp
__set_app_type
isspace
_amsg_exit
system
wctomb
strpbrk
_CIsin

Sections

.text
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

570b9c7f2346148dac5c4b364ea763a7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

msvcrt

Sections

.text Size: 60KB - Virtual size: 60KB

.itext2 Size: 1KB - Virtual size: 1KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 60KB

.itext2
Size: 1KB - Virtual size: 1KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 2KB - Virtual size: 2KB