14423379569e10af14446acb61d72df29de91985d6a326662b248046f6ca50f6

Sharing

Copy URL Twitter E-mail

General

Target

14423379569e10af14446acb61d72df29de91985d6a326662b248046f6ca50f6
Size

542KB
MD5

ece75332a984bbfe08e595da27143520
SHA1

3266c3854575946412ad8965145d6dc44db6021a
SHA256

14423379569e10af14446acb61d72df29de91985d6a326662b248046f6ca50f6
SHA512

8975d0d12496330dca0cefe98902e905a99af8fa94b0b75746730951049176520d8bd23217b0c76e645b061fd02ed1005415d3e211f0d5bddbb2ce471e108294
SSDEEP

12288:lwLH5yfse/OGlhfxT81srtQRRezbeS79+xMG/Olo9+wzJzjfX8Gls3S/M7g2PpmI:mLAt/OGFT8euRReq/Mo9+wzJzjfX8Glg

Score

N/A

Malware Config

Signatures

Files

14423379569e10af14446acb61d72df29de91985d6a326662b248046f6ca50f6
.exe windows x86

c32b227a7d9db19081d1bdb3d771d8de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
TlsFree
DeleteCriticalSection
InterlockedDecrement
GetCurrentProcess
InterlockedIncrement
GetLocaleInfoA
GetTimeFormatA
HeapSize
FormatMessageW
VirtualFree
FreeEnvironmentStringsA
GetFileType
WriteFile
WriteConsoleA
LeaveCriticalSection
GetOEMCP
GetCommandLineW
GetStringTypeA
QueryPerformanceCounter
IsValidCodePage
GetStdHandle
GetLocaleInfoW
HeapDestroy
GetACP
GetPrivateProfileStructW
GetLastError
UnhandledExceptionFilter
CompareStringA
VirtualAlloc
LoadLibraryA
GetProcAddress
GetConsoleCP
SetFilePointer
CloseHandle
MultiByteToWideChar
GetTimeZoneInformation
SetStdHandle
GetStartupInfoA
GetCPInfo
IsDebuggerPresent
TlsAlloc
WriteConsoleW
TlsGetValue
CompareStringW
OpenMutexA
VirtualQuery
GetProcessHeap
ReadFile
FlushFileBuffers
FreeLibrary
GetDateFormatA
GetUserDefaultLCID
HeapFree
SetEnvironmentVariableA
EnterCriticalSection
GetStartupInfoW
InitializeCriticalSection
GetModuleFileNameW
GetVersionExA
SetConsoleCtrlHandler
Sleep
HeapAlloc
EnumSystemLocalesA
InterlockedExchange
WritePrivateProfileSectionW
IsValidLocale
GetEnvironmentStrings
GetModuleHandleA
GetNamedPipeHandleStateW
GetCalendarInfoW
GetCurrentThread
FreeEnvironmentStringsW
RtlUnwind
SetLastError
SetHandleCount
CreateMutexA
TlsSetValue
LCMapStringW
GetCurrentProcessId
GetTickCount
SetUnhandledExceptionFilter
HeapCreate
TerminateProcess
GetStringTypeW
GetCurrentThreadId
GetConsoleOutputCP
WideCharToMultiByte
GetEnvironmentStringsW
GetConsoleMode
GetModuleFileNameA
HeapReAlloc
GetSystemTimeAsFileTime
GetCommandLineA
LCMapStringA
ExitProcess
CreateFileA

advapi32

RegNotifyChangeKeyValue
CryptSignHashA
CryptGenKey
LookupPrivilegeNameA
CryptEncrypt
CryptDuplicateHash
RegEnumKeyExA
RegCreateKeyA
CryptSetProvParam
CryptAcquireContextA
AbortSystemShutdownA
CryptContextAddRef
CryptEnumProvidersW
CryptGetKeyParam
RegOpenKeyExW
RegQueryValueExA
CryptAcquireContextW

comctl32

ImageList_DragMove
ImageList_Write
_TrackMouseEvent
ImageList_Remove
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_SetBkColor
ImageList_BeginDrag
ImageList_LoadImageA
ImageList_GetFlags

user32

DdeFreeStringHandle
RegisterClassA
IsCharLowerW
InflateRect
LoadCursorW
LoadMenuW
MessageBoxA
WindowFromDC
GetKeyNameTextA
TrackPopupMenuEx
WaitForInputIdle
CharToOemBuffA
UnloadKeyboardLayout
DdeUnaccessData
DragObject
SetWindowPos
RegisterClassExA
UpdateWindow
DestroyWindow
ShowWindow
SetCaretBlinkTime
SetMenuItemBitmaps
MsgWaitForMultipleObjectsEx
SetShellWindow
RegisterClipboardFormatA
DrawFocusRect
CreateWindowExW
DefWindowProcA

shell32

ShellExecuteW

Sections

.text
Size: 367KB - Virtual size: 366KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c32b227a7d9db19081d1bdb3d771d8de

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

user32

shell32

Sections

.text Size: 367KB - Virtual size: 366KB

.rdata Size: 26KB - Virtual size: 39KB

.data Size: 113KB - Virtual size: 113KB

.rsrc Size: 34KB - Virtual size: 34KB

.text
Size: 367KB - Virtual size: 366KB

.rdata
Size: 26KB - Virtual size: 39KB

.data
Size: 113KB - Virtual size: 113KB

.rsrc
Size: 34KB - Virtual size: 34KB