8b9ccc2dd5fe0a7e26c4ee9959ea9a00ad8497f15a01f52bdcc81a9c1be079ec

Sharing

Copy URL Twitter E-mail

General

Target

8b9ccc2dd5fe0a7e26c4ee9959ea9a00ad8497f15a01f52bdcc81a9c1be079ec
Size

188KB
MD5

992468bd0c2e798a832e71647045b0ca
SHA1

abf00bd641774390c7f37e8ee86b2e55b2782957
SHA256

8b9ccc2dd5fe0a7e26c4ee9959ea9a00ad8497f15a01f52bdcc81a9c1be079ec
SHA512

9be374cb1ed801a67b666dc2136ab3fa60ffd97592b369120fc41fc6c870134f8267c47855e3d16f514bcbda3426406c53390fa132870fe90311fe1289df68d9
SSDEEP

3072:6n7GAn043rxnWrauIG2owqPcLjE027drOzKlGI642J:Un0WFnWrauIGW2hyVy2

Score

N/A

Malware Config

Signatures

Files

8b9ccc2dd5fe0a7e26c4ee9959ea9a00ad8497f15a01f52bdcc81a9c1be079ec
.exe windows x86

4896900c9f108852d5eb13b39f2143fe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
Sleep
GetLastError
GetCommandLineW
LocalFree
LocalAlloc
lstrlenW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
lstrcmpW
lstrcmpiW
lstrcpyW
InterlockedIncrement
CreateProcessA
GetModuleFileNameA
InterlockedDecrement
GetVolumeInformationA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LoadLibraryA
HeapReAlloc
WaitForSingleObject
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
TerminateThread
CreateFileA
ReadFile
PeekNamedPipe
CloseHandle
ExitProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
GetStdHandle
WriteFile
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetProcAddress
GetProcessHeap
HeapAlloc
lstrcpyA
lstrcatA
lstrlenA
VirtualAlloc
HeapFree
GetModuleHandleA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetStartupInfoA
GetVersionExA
GetCommandLineA
RtlUnwind
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCurrentProcess

winmm

timeGetTime

ws2_32

WSAGetLastError
WSAStartup
WSACleanup
gethostname

user32

SetTimer
KillTimer
GetWindowLongA
wsprintfA
GetActiveWindow
PostQuitMessage
ReleaseDC
FillRect
GetDC
SetRect
ShowWindow
SetWindowLongA
UnregisterClassW
CreateWindowExW
RegisterClassW
GetMessageA
TranslateMessage
DispatchMessageA
GetClientRect
DefWindowProcA
wsprintfW

advapi32

RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyA
RegCloseKey

ole32

CoCreateInstance
OleUninitialize
OleInitialize
CreateStreamOnHGlobal

oleaut32

VariantClear
SysAllocString
SysFreeString
SysAllocStringLen
SysStringLen
VariantInit

gdiplus

GdipCloneImage
GdipFree
GdipAlloc
GdipDisposeImage
GdipSaveImageToStream
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders
GdiplusShutdown
GdiplusStartup

gdi32

DeleteObject
GetStockObject
SelectObject
CreateCompatibleBitmap
DeleteDC
CreateCompatibleDC

wininet

InternetQueryOptionA
InternetSetOptionA
HttpSendRequestA
InternetQueryDataAvailable
InternetReadFile
InternetOpenA
InternetConnectA
HttpOpenRequestA
InternetCloseHandle
HttpQueryInfoA

shell32

CommandLineToArgvW

Sections

.text
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4896900c9f108852d5eb13b39f2143fe

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

winmm

ws2_32

user32

advapi32

ole32

oleaut32

gdiplus

gdi32

wininet

shell32

Sections

.text Size: 128KB - Virtual size: 124KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 32KB - Virtual size: 32KB

.text
Size: 128KB - Virtual size: 124KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 32KB - Virtual size: 32KB