7228975279e7cc577f1d686851eec72442232c0da2545aa6014fd20a4f376dc0

Sharing

Copy URL Twitter E-mail

General

Target

7228975279e7cc577f1d686851eec72442232c0da2545aa6014fd20a4f376dc0
Size

537KB
MD5

5cfbd9f78e00d161c2a090cd5ef98537
SHA1

d87085a2431a306a003e05e195f5311d37421fab
SHA256

7228975279e7cc577f1d686851eec72442232c0da2545aa6014fd20a4f376dc0
SHA512

9b73fe81b84264a3034f59dc7e60983d3310876fd9a0237a4b62e3ccf0d5f6be4601152f2998461aaeae3c6d56ebe7d017198def3df99f8643cb187c2749f086
SSDEEP

12288:EPM11iida5LG4xLHATAvIja9Rz8v+DkJxgZEhWi9ePtEtjji9r0cSLKRz:EY8AfLTBja9RlIxBW70jji9rjZ

Score

N/A

Malware Config

Signatures

Files

7228975279e7cc577f1d686851eec72442232c0da2545aa6014fd20a4f376dc0
.exe windows x86

208dff168dcfef45a560a4c3c2ad03e5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
WriteConsoleW
SetStdHandle
HeapReAlloc
LoadLibraryW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
GetConsoleMode
GetConsoleCP
SetFilePointer
IsProcessorFeaturePresent
HeapSize
Sleep
CloseHandle
FlushFileBuffers
TlsSetValue
TlsFree
GetVersion
FindNextFileA
GetProfileStringA
GetStringTypeW
FindClose
HeapAlloc
GetLastError
FindFirstFileA
HeapCreate
CreateEventA
InitializeCriticalSection
WaitForSingleObject
InterlockedDecrement
GetSystemTimeAsFileTime
GetCurrentProcessId
TlsGetValue
TlsAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetTickCount
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
RaiseException
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetProcAddress
GetCurrentThreadId
LoadLibraryA
CreateFileW
SetLastError
GetModuleHandleW
MultiByteToWideChar
WideCharToMultiByte
LocalFree
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapFree
RtlUnwind
EncodePointer
DecodePointer
InterlockedIncrement

user32

CheckMenuItem
GetDialogBaseUnits
DestroyMenu
CallWindowProcA
EnableWindow
LoadImageA
SetWindowTextA
SendMessageA
GetCursorPos
DefWindowProcA
EnableMenuItem
CreateWindowExA
GetWindowLongA
CheckMenuRadioItem
SetRect
GetSystemMetrics
PostQuitMessage
GetWindowTextA
GetMenu
DestroyWindow
ScreenToClient
GetWindowRect
InsertMenuItemA
CreateMenu
TrackPopupMenu
FillRect
GetSubMenu
LoadMenuA
GetClientRect
BeginPaint

gdi32

PatBlt
CreateEllipticRgn
EndPage
AddFontResourceA
StartPage
DeleteDC
Polygon
ExcludeClipRect
CreateDCA
DeleteObject
SelectObject
SelectClipRgn
CombineRgn
StartDocA
EnumFontFamiliesA
CreateRectRgn
EndDoc
GetStockObject
CreateSolidBrush

advapi32

GetSecurityDescriptorSacl
SetNamedSecurityInfoA

ole32

CoGetMalloc

oleaut32

SysFreeString
VariantChangeType
VariantInit
VariantCopy
VariantClear
SysAllocString

shlwapi

StrTrimA

gdiplus

GdipCreatePathGradientFromPath
GdipDeleteBrush
GdipFree
GdipSetPathGradientCenterColor
GdipCloneBrush
GdipSetPathGradientSurroundColorsWithCount
GdipDeleteGraphics
GdipAddPathEllipseI
GdipGetPathGradientPointCount
GdipAlloc
GdipDeletePath
GdipCreateFromHDC
GdipCreatePath
GdipFillEllipseI
GdiplusStartup

imm32

ImmGetDefaultIMEWnd

winhttp

WinHttpSetTimeouts

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 266KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

208dff168dcfef45a560a4c3c2ad03e5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

shlwapi

gdiplus

imm32

winhttp

Sections

.text Size: 73KB - Virtual size: 73KB

.rdata Size: 119KB - Virtual size: 119KB

.data Size: 69KB - Virtual size: 77KB

.rsrc Size: 266KB - Virtual size: 265KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 73KB - Virtual size: 73KB

.rdata
Size: 119KB - Virtual size: 119KB

.data
Size: 69KB - Virtual size: 77KB

.rsrc
Size: 266KB - Virtual size: 265KB

.reloc
Size: 7KB - Virtual size: 7KB