d68bf3135b2dfe589cf0ff1d59cf1c0c1f38b409cb2567d597046173be0fc3b4

Sharing

Copy URL Twitter E-mail

General

Target

d68bf3135b2dfe589cf0ff1d59cf1c0c1f38b409cb2567d597046173be0fc3b4
Size

347KB
MD5

124b08230120138a8e65990603caad3d
SHA1

f29e704ad70f76f969813898718d1fab22871951
SHA256

d68bf3135b2dfe589cf0ff1d59cf1c0c1f38b409cb2567d597046173be0fc3b4
SHA512

9d9e10392ed8df662c0e31c2ff64279d2e40bf5ee0505a41f14f119f9d748e387bddf4f7f9dbe7e56c2c252ebe970acd0f9f4bc47acba7db0d6bae038ea607aa
SSDEEP

6144:PJpsAHNFfWZ92CPCZHUYXJ9kmK4YpU6DMa9cGqoZFoh1HVayuksTNos1M44lfSzB:Bi4NFfi2X1/kwYCeuGtFy1Hdup5T1M49

Score

N/A

Malware Config

Signatures

Files

d68bf3135b2dfe589cf0ff1d59cf1c0c1f38b409cb2567d597046173be0fc3b4
.exe windows x86

c1645dd15dd995e29322ac0b91178856

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FindNextUrlCacheGroup
InternetQueryOptionW

user32

SetCursor
GetDialogBaseUnits
MessageBoxA
IsWindowUnicode
GetKeyboardLayoutList
UnregisterDeviceNotification
DefWindowProcA
DestroyWindow
LoadMenuW
EndTask
CallMsgFilter
RegisterClassA
ShowWindow
VkKeyScanExA
DdeCreateDataHandle
BeginDeferWindowPos
OemToCharA
PtInRect
OemToCharW
SetPropW
InternalGetWindowText
CopyAcceleratorTableA
DrawEdge
CreateWindowExA
GetClassWord
GetAncestor
DefFrameProcW
ToAscii
EnumDisplayMonitors
RegisterClassExA
ExcludeUpdateRgn
DrawIcon

kernel32

GetEnvironmentStringsW
FlushFileBuffers
GetStdHandle
HeapDestroy
EnumSystemLocalesA
TlsFree
InitializeCriticalSection
GetCPInfo
EnterCriticalSection
GetTimeFormatA
ExitProcess
GetDateFormatA
HeapFree
GetCurrentThreadId
GetFileType
MultiByteToWideChar
TlsSetValue
IsBadWritePtr
TlsGetValue
SetFilePointer
SetConsoleTitleW
OpenMutexA
ReadFile
InterlockedExchange
VirtualQuery
LCMapStringA
GetVersionExA
GetUserDefaultLCID
GetModuleHandleA
TerminateProcess
GetCurrentProcess
GetStartupInfoA
GetACP
GetStringTypeA
GetSystemTimeAsFileTime
SetLastError
LeaveCriticalSection
CreateMutexA
GetCurrentProcessId
HeapReAlloc
GetOEMCP
GetLastError
GetCommandLineA
GetModuleFileNameA
RtlUnwind
FreeEnvironmentStringsA
IsValidCodePage
GetCurrentThread
VirtualFree
SetEnvironmentVariableA
LoadLibraryA
SetStdHandle
IsValidLocale
LCMapStringW
FreeEnvironmentStringsW
CompareStringA
DeleteCriticalSection
GetLocaleInfoA
CloseHandle
SetHandleCount
GetStringTypeW
GetEnvironmentStrings
GetLocaleInfoW
GetSystemInfo
WriteFile
GetTimeZoneInformation
GetTickCount
UnhandledExceptionFilter
VirtualProtect
VirtualAlloc
HeapCreate
QueryPerformanceCounter
HeapSize
GetProcAddress
CompareStringW
TlsAlloc
HeapAlloc
WideCharToMultiByte

comctl32

CreateToolbar
CreateMappedBitmap
InitCommonControlsEx
ImageList_GetImageInfo
CreateStatusWindow

gdi32

GetCharacterPlacementW
CreateCompatibleBitmap
GetKerningPairsW
Pie
GetCharWidth32W
SetViewportExtEx
GdiFlush
GetICMProfileW
CloseEnhMetaFile
SetPaletteEntries
DeleteDC
GetFontData
CreateDCW
GetPolyFillMode
SetPolyFillMode
UpdateColors

comdlg32

GetOpenFileNameW
GetFileTitleA
ChooseColorA
PrintDlgA

Sections

.text
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1645dd15dd995e29322ac0b91178856

Headers

File Characteristics

Imports

wininet

user32

kernel32

comctl32

gdi32

comdlg32

Sections

.text Size: 135KB - Virtual size: 135KB

.rdata Size: 91KB - Virtual size: 91KB

.data Size: 90KB - Virtual size: 107KB

.rsrc Size: 28KB - Virtual size: 28KB

.text
Size: 135KB - Virtual size: 135KB

.rdata
Size: 91KB - Virtual size: 91KB

.data
Size: 90KB - Virtual size: 107KB

.rsrc
Size: 28KB - Virtual size: 28KB