0b2d014a05e0868ef3e9b3e9ee97a7dbd7ee6b7fd396c0df0960c83ad356afdb

Sharing

Copy URL Twitter E-mail

General

Target

0b2d014a05e0868ef3e9b3e9ee97a7dbd7ee6b7fd396c0df0960c83ad356afdb
Size

503KB
MD5

7796480b681d7c5177da3eb60f2cc191
SHA1

22c84a119c2f9a8263a525b479b39ad89dcfeda6
SHA256

0b2d014a05e0868ef3e9b3e9ee97a7dbd7ee6b7fd396c0df0960c83ad356afdb
SHA512

dc4731e2b5bdde65ef8ebd5286888cba06541addee9b25162a1caf451ac962923764a68944a892c6ab9d19e76a189c4b8e1e252c3336a3f2a33995ee2abfc38c
SSDEEP

12288:9DYbOtPcSX3Dlu43zOICX/59uwQGJ+y4CrJIEN:NFcu3ZuqzODX/bvXceqW

Score

N/A

Malware Config

Signatures

Files

0b2d014a05e0868ef3e9b3e9ee97a7dbd7ee6b7fd396c0df0960c83ad356afdb
.exe windows x86

96f077a2cdf57145ece2b46aba534ec1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
DeleteCriticalSection
GetTimeZoneInformation
SetLastError
AddAtomA
RtlUnwind
FreeEnvironmentStringsA
GetLastError
GetOEMCP
GetStartupInfoA
GetLocaleInfoA
TerminateProcess
SetEnvironmentVariableA
GetCommandLineA
GlobalLock
GetACP
TlsGetValue
VirtualProtect
GetUserDefaultLCID
GetModuleFileNameA
InitializeCriticalSection
QueryPerformanceCounter
LoadLibraryA
VirtualQuery
HeapReAlloc
GetSystemTimeAsFileTime
PulseEvent
GetThreadContext
GetFileAttributesExW
EnterCriticalSection
TlsFree
IsBadWritePtr
HeapSize
ReadFile
VirtualFree
GetVersionExA
GetEnvironmentStrings
GetCurrentProcessId
GetCurrentProcess
WaitForSingleObjectEx
FreeEnvironmentStringsW
GetStdHandle
CompareStringA
LocalFileTimeToFileTime
GetDateFormatA
HeapFree
UnhandledExceptionFilter
WriteConsoleInputW
GetTickCount
HeapDestroy
GetCurrentThread
OpenSemaphoreW
TlsSetValue
SetFilePointer
HeapAlloc
SetConsoleTitleW
FindFirstFileExA
GetEnvironmentStringsW
lstrcmpiW
FlushFileBuffers
GetCurrentThreadId
MultiByteToWideChar
LeaveCriticalSection
GetWindowsDirectoryA
CreateMutexA
LCMapStringA
IsValidCodePage
GetLocaleInfoW
HeapCreate
CloseHandle
InterlockedExchange
OpenMutexA
SetHandleCount
GetStringTypeW
ExpandEnvironmentStringsA
TlsAlloc
IsValidLocale
WriteFile
ExitProcess
GetLogicalDriveStringsW
CompareStringW
FindFirstFileA
EnumSystemLocalesA
VirtualAlloc
GetFileType
FormatMessageA
SetStdHandle
CreateRemoteThread
GetTimeFormatA
LCMapStringW
GetProcAddress
GetSystemInfo
GetCPInfo
GetModuleHandleA
WideCharToMultiByte

comctl32

ImageList_SetBkColor
InitCommonControlsEx
ImageList_DragLeave
MakeDragList
ImageList_Add
CreateStatusWindowA
ImageList_SetOverlayImage
ImageList_Write
ImageList_Replace
ImageList_Create
ImageList_SetFlags
ImageList_Copy
ImageList_SetDragCursorImage
ImageList_GetIconSize
ImageList_GetIcon
ImageList_Draw
CreatePropertySheetPageA
CreateMappedBitmap
ImageList_SetFilter
ImageList_BeginDrag
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_EndDrag
CreateToolbarEx
ImageList_SetIconSize
_TrackMouseEvent

comdlg32

GetFileTitleA
GetOpenFileNameW

user32

SetWindowRgn
SetCaretBlinkTime
SetLastErrorEx
AttachThreadInput
ShowWindow
DestroyWindow
DrawMenuBar
GetUpdateRect
IsRectEmpty
DefWindowProcA
PtInRect
RegisterClassExW
RegisterClassA
DrawTextA
FrameRect
FlashWindowEx
AdjustWindowRectEx
ActivateKeyboardLayout
CreateWindowExW
MessageBoxW
SendIMEMessageExW
CreateMenu
GetMenuContextHelpId
RegisterClassExA
CreateDesktopA

shell32

ExtractAssociatedIconW

Sections

.text
Size: 334KB - Virtual size: 333KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

96f077a2cdf57145ece2b46aba534ec1

Headers

File Characteristics

Imports

kernel32

comctl32

comdlg32

user32

shell32

Sections

.text Size: 334KB - Virtual size: 333KB

.rdata Size: 52KB - Virtual size: 64KB

.data Size: 101KB - Virtual size: 100KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 334KB - Virtual size: 333KB

.rdata
Size: 52KB - Virtual size: 64KB

.data
Size: 101KB - Virtual size: 100KB

.rsrc
Size: 15KB - Virtual size: 15KB