8ba70cc45395e05649a9e2613fff2473b5bd1f5092b3e9eaca762b2082e4a058

Sharing

Copy URL

Twitter E-mail

General

Target

8ba70cc45395e05649a9e2613fff2473b5bd1f5092b3e9eaca762b2082e4a058
Size

776KB
MD5

b3632146bc4432d3502d264633e2b41d
SHA1

f8bdaa5cc8b0d4bb0dd7d710909dd311b6c558e4
SHA256

8ba70cc45395e05649a9e2613fff2473b5bd1f5092b3e9eaca762b2082e4a058
SHA512

a792054a060746199a484993d6f79e03fdd01d0c9461a0dddded4367a44d1d67d6e7342009698c68bd0534b9ec99300ae99ac925c6c521bb278f81549613ae88
SSDEEP

12288:xyEXcgDRGuBtrbeFs9f9Kp0mlO3jjSfmu2SsDSyc86XPdDyUaqL:9Xc16beFYfm0fz/XRcmA

Score

N/A

Malware Config

Signatures

Files

8ba70cc45395e05649a9e2613fff2473b5bd1f5092b3e9eaca762b2082e4a058
.exe windows x86

765b7f04a8863b7db84d6ed064b5a369

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FtpRenameFileA

user32

GetInputState
CharLowerBuffA
TrackPopupMenu
EnumDesktopsW
GetClipboardFormatNameW
CreateMDIWindowA
EnumPropsExW
SetThreadDesktop
IsChild
GetWindowTextW
AnimateWindow
DlgDirSelectExW
IsDialogMessageA
GetWindowLongW
CreateIcon
DdeUninitialize
CountClipboardFormats
DrawTextExA
GetKeyboardState
DefDlgProcW
GetDlgItemTextA
GetSysColorBrush
DrawIconEx
DestroyWindow
CreateDesktopA
GetKeyboardLayoutList
CallWindowProcW
RegisterClassA
CharUpperA
GetClassNameA
CharNextA
SendDlgItemMessageA
DlgDirListComboBoxA
RegisterClassExW
CreateWindowExA
ValidateRect
DrawCaption
ShowScrollBar
GetActiveWindow
DefMDIChildProcW
ScrollWindowEx
OpenDesktopW
SetPropW
CharPrevA
DdeFreeDataHandle
GetMessagePos
AdjustWindowRect
CopyRect
DefWindowProcW
AppendMenuA
SetMenuItemBitmaps
SetWindowPlacement
SetUserObjectInformationA
AnyPopup
EndPaint
GetMenuStringW
IsCharLowerA
DestroyCaret
GetScrollInfo
GetMenuItemRect
DdeCreateStringHandleW
MessageBoxW
CreateIconFromResource
SetMenuInfo
SetShellWindow
UnionRect
RegisterClassExA
ModifyMenuA
CascadeChildWindows
ShowWindow
CopyAcceleratorTableA
CharUpperBuffW

comdlg32

FindTextW
PrintDlgW
PrintDlgA
GetOpenFileNameW

kernel32

LoadLibraryW
VirtualFreeEx
GetStringTypeA
GetCommandLineA
FlushViewOfFile
InterlockedExchange
GetModuleFileNameA
GlobalGetAtomNameA
CreateProcessW
EnumResourceLanguagesA
VirtualQuery
GetConsoleCP
CloseHandle
InitializeCriticalSectionAndSpinCount
WriteFile
FreeEnvironmentStringsW
EnumDateFormatsW
LCMapStringA
SetLocaleInfoW
MultiByteToWideChar
GetFullPathNameW
GetModuleHandleW
TlsFree
GetACP
IsValidLocale
CompareStringW
EnterCriticalSection
HeapFree
WriteConsoleW
GetStdHandle
WaitNamedPipeA
DeleteAtom
GetFileType
FreeLibrary
SetThreadLocale
GetCurrentThreadId
ExitProcess
CreateMutexA
WriteConsoleA
GetLocaleInfoW
EnumCalendarInfoW
VirtualAlloc
Sleep
GlobalLock
GetUserDefaultLCID
GetConsoleOutputCP
TransactNamedPipe
PulseEvent
GetEnvironmentStringsW
SetFilePointer
GetCurrentProcess
LeaveCriticalSection
FillConsoleOutputCharacterA
HeapReAlloc
GetOEMCP
CompareStringA
GetCurrentThread
GetNamedPipeHandleStateW
TlsGetValue
LocalUnlock
HeapCreate
OpenFileMappingA
TerminateProcess
GetTimeFormatA
GetThreadLocale
InterlockedIncrement
GetLastError
HeapLock
HeapSize
FlushFileBuffers
LoadLibraryA
GetDateFormatA
GetTimeZoneInformation
lstrcmpiA
ReadFile
GetCPInfo
EnumSystemLocalesA
SetThreadContext
RtlUnwind
SetStdHandle
UnhandledExceptionFilter
WideCharToMultiByte
InterlockedDecrement
GetConsoleMode
GetModuleHandleA
GetCurrentProcessId
GetCompressedFileSizeA
WriteConsoleInputW
GetLocaleInfoA
OpenSemaphoreA
AddAtomW
IsValidCodePage
MapViewOfFile
OpenMutexA
GetEnvironmentVariableA
IsDebuggerPresent
WritePrivateProfileSectionW
GetSystemDefaultLangID
GetStringTypeW
CreateRemoteThread
FreeEnvironmentStringsA
SetEnvironmentVariableA
GetStartupInfoA
CreateFileA
GetProcAddress
VirtualFree
FormatMessageW
TlsAlloc
HeapDestroy
DeleteCriticalSection
GetProfileIntA
OpenEventA
GetPrivateProfileStructW
LCMapStringW
SetConsoleCtrlHandler
WriteFileEx
SetUnhandledExceptionFilter
GetTickCount
lstrcatA
QueryPerformanceCounter
CreateThread
GetPrivateProfileStructA
HeapAlloc
WritePrivateProfileStructW
SetLastError
RtlFillMemory
GetSystemTimeAsFileTime
TlsSetValue
GetWindowsDirectoryW
GetEnvironmentStrings
SetHandleCount

shell32

FindExecutableA

comctl32

ImageList_Add
DestroyPropertySheetPage
CreateMappedBitmap
DrawStatusTextW
ImageList_SetDragCursorImage
ImageList_GetImageInfo
ImageList_SetFilter
ImageList_GetIconSize
_TrackMouseEvent
CreateToolbar
ImageList_Destroy
ImageList_GetIcon
InitCommonControlsEx
ImageList_DrawEx
ImageList_SetIconSize
ImageList_Replace
ImageList_Remove
ImageList_LoadImage
ImageList_GetDragImage
CreateToolbarEx
ImageList_AddIcon

Sections

.text
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 408KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

765b7f04a8863b7db84d6ed064b5a369

Headers

File Characteristics

Imports

wininet

user32

comdlg32

kernel32

shell32

comctl32

Sections

.text Size: 184KB - Virtual size: 180KB

.rdata Size: 408KB - Virtual size: 407KB

.data Size: 136KB - Virtual size: 134KB

.rsrc Size: 44KB - Virtual size: 40KB

.text
Size: 184KB - Virtual size: 180KB

.rdata
Size: 408KB - Virtual size: 407KB

.data
Size: 136KB - Virtual size: 134KB

.rsrc
Size: 44KB - Virtual size: 40KB