f0185c6ceb27abf4d0221c2e7376759c2c2ed308cddd838656a5791e8e077cf5

General

Target

f0185c6ceb27abf4d0221c2e7376759c2c2ed308cddd838656a5791e8e077cf5
Size

56KB
MD5

8d74a6b2b0281ef72d9d9fb0506b2433
SHA1

1501d8aeb4d73670174f5da053ce593e8e8dd56a
SHA256

f0185c6ceb27abf4d0221c2e7376759c2c2ed308cddd838656a5791e8e077cf5
SHA512

3a5819d8aa7fabf3371373c8602dbb4f8030ce9fb7cbe114586a497b2f1c832950fbdafd5e1358c1dcb14e6eacf0dcf2b00deaf19e71be00ae37d928378c8deb
SSDEEP

768:AWyjtav7w0ymLE06o8EzKugYpIS709NhAKNVEKkDqQ7YtmlCh106u9kSEopvD:AWG0JXmhEz9gYpIPdyGQ7Umwh1IdE4v

Score

N/A

Malware Config

Signatures

Files

f0185c6ceb27abf4d0221c2e7376759c2c2ed308cddd838656a5791e8e077cf5
.exe windows x86

c8361bba283d6c73f9163988c81abf30

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsprop

CheckADsError
ErrMsg

user32

SetFocus
DispatchMessageW
IsWindowVisible
GetKeyNameTextA
GetMessageA
InsertMenuA
LoadImageA
LoadStringA
DrawTextW
DialogBoxParamW
PostMessageW
IsDialogMessageA
FindWindowA
MessageBoxW
PeekMessageW
wsprintfW
DefDlgProcA
LoadBitmapA

kernel32

GetStartupInfoA
SetErrorMode
GetLocalTime
CreateMutexA
GetLocaleInfoW
GetProcAddress
GetProcessHeap
OpenMutexW
WaitForSingleObjectEx
GetACP
CreateEventA
GetDriveTypeW
CreateDirectoryA
ReadFile
lstrcpynW
TlsGetValue
GetModuleHandleA
GetLastError
DeviceIoControl
CreateWaitableTimerA
InitializeCriticalSection
GetShortPathNameA
GetLogicalDriveStringsA
CompareStringA
FindFirstFileW
SearchPathW
GetFileSize
WriteConsoleW
GetDateFormatA

ctl3d32

Ctl3dCtlColor
Ctl3dUnregister
Ctl3dGetVer
Ctl3dRegister
Ctl3dEnabled

wtsapi32

WTSFreeMemory
WTSQuerySessionInformationA
WTSEnumerateServersA
WTSUnRegisterSessionNotification
WTSEnumerateProcessesA
WTSCloseServer
WTSSendMessageA
WTSQueryUserToken
WTSSetUserConfigA
WTSVirtualChannelPurgeInput
WTSVirtualChannelOpen
WTSVirtualChannelClose

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8361bba283d6c73f9163988c81abf30

Headers

File Characteristics

Imports

dsprop

user32

kernel32

ctl3d32

wtsapi32

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 20KB - Virtual size: 19KB