959c5a65650e1833761b8b0adcc37f4b099b9292958e3366322a3c378cbaafee

Sharing

Copy URL Twitter E-mail

General

Target

959c5a65650e1833761b8b0adcc37f4b099b9292958e3366322a3c378cbaafee
Size

5.9MB
MD5

1d3c723bf915d11e6a02cd3d9c95259b
SHA1

6f37815b5276a4e88a395f1c2ab419317a6d6d53
SHA256

959c5a65650e1833761b8b0adcc37f4b099b9292958e3366322a3c378cbaafee
SHA512

4ac51d8877b2210adf700f2a2952e3d4a551b1e0f549a6851d53a77d52f79c4fca7b9b934c3088e53b9d308e0a01ddad30a6302eac4b1b3aaa2fb10cdc6ebb8c
SSDEEP

98304:SJrs+pMA4GSoq+xRHpAaAeAvODkry0rV6OdkNFfkm8eZt572hVrNnlAFAdVusNnL:SJrrpMqSF+xRJtqF8M0FlHQnlLfh9dic

Score

N/A

Malware Config

Signatures

Files

959c5a65650e1833761b8b0adcc37f4b099b9292958e3366322a3c378cbaafee
.exe windows x86

3e6824fb2c743597332f4c376be432dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WaitForSingleObjectEx
HeapAlloc
LoadLibraryA
LocalFileTimeToFileTime
CreateMutexA
GetCurrentProcess
GetLastError
GetTickCount
GetProcAddress
EnterCriticalSection
HeapReAlloc
SetLastError
GetModuleHandleA
GetVersionExA
GetModuleHandleExW
Sleep
VirtualProtect
SystemTimeToFileTime
LeaveCriticalSection
FileTimeToLocalFileTime
GetLocalTime
DuplicateHandle
CreateFileW
CreateFileA
InitializeCriticalSection
GetCurrentProcessId
IsBadWritePtr
CloseHandle
GetProcessHeap
HeapFree
VirtualFree
InterlockedCompareExchange
VirtualAlloc
WriteConsoleW
SetStdHandle
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LCMapStringW
LoadLibraryW
OutputDebugStringW
LoadLibraryExW
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
FlushFileBuffers
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetModuleFileNameA
GetStartupInfoW
IsProcessorFeaturePresent
RtlUnwind
GetCommandLineA
InterlockedDecrement
ExitProcess
MultiByteToWideChar
GetStdHandle
WriteFile
GetModuleFileNameW
HeapSize
RaiseException
IsDebuggerPresent
InterlockedIncrement
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
GetCurrentThreadId
WideCharToMultiByte
GetFileType
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection

advapi32

RegQueryValueExW
RegCreateKeyW
RegQueryValueExA
RegQueryValueA
RegCreateKeyExA
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
RegQueryInfoKeyA
RegCreateKeyExW

user32

CreateWindowExA
LoadIconW
EnumWindows
DispatchMessageW
CheckMenuItem
SetForegroundWindow
RedrawWindow
MessageBoxW
RegisterClassExW
SendMessageA
RegisterClassExA
GetClientRect
CreateWindowExW
TranslateMessage
SetWindowPos
DispatchMessageA
TrackPopupMenu
PostQuitMessage
AppendMenuW
UpdateWindow
FindWindowW
FindWindowA
SendMessageW
GetWindowRect
GetWindowTextW
PostMessageW
DefWindowProcA
GetMessageA
BringWindowToTop
RegisterWindowMessageA
PostMessageA
RegisterWindowMessageW

Sections

.text
Size: 524KB - Virtual size: 523KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 431KB - Virtual size: 430KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4.9MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e6824fb2c743597332f4c376be432dc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 524KB - Virtual size: 523KB

.rdata Size: 431KB - Virtual size: 430KB

.data Size: 4.9MB - Virtual size: 4.9MB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 30KB - Virtual size: 29KB

.text
Size: 524KB - Virtual size: 523KB

.rdata
Size: 431KB - Virtual size: 430KB

.data
Size: 4.9MB - Virtual size: 4.9MB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 30KB - Virtual size: 29KB