b4d11c8a6f5520eab67097c046ba3ebdc9740a6c9342ede8c0fd5a4598dd17fd

Sharing

Copy URL Twitter E-mail

General

Target

b4d11c8a6f5520eab67097c046ba3ebdc9740a6c9342ede8c0fd5a4598dd17fd
Size

852KB
MD5

897859c285fa13e5ba8343cf7411c1f5
SHA1

7d411ac23b467a8258c4025ab23d2e3f57158cd6
SHA256

b4d11c8a6f5520eab67097c046ba3ebdc9740a6c9342ede8c0fd5a4598dd17fd
SHA512

e3276cc87db1521ad7ddb530e03cd9a9aedd19f9b48fbde7fd747d41a615d84cd6a08391ccc147111cb707223833fecb2b424008281ad4fb930d3986fef55402
SSDEEP

24576:6LCp0ab8sBwigAPOCj+SGPckQrEQhVr4:6LCp0a4sQAPOKyPD

Score

N/A

Malware Config

Signatures

Files

b4d11c8a6f5520eab67097c046ba3ebdc9740a6c9342ede8c0fd5a4598dd17fd
.exe windows x86

6040d8ce8ecdd2e13a54269a3d611c17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ChangeDisplaySettingsW
ToUnicode
GetMonitorInfoA
ScreenToClient
ScrollDC
DdeClientTransaction
UnhookWinEvent
DdeQueryStringA
RegisterClassA
GetMenuItemCount
PackDDElParam
ShowWindow
DestroyAcceleratorTable
DrawStateW
CreateWindowStationW
GetSysColor
CopyImage
DestroyCaret
SetScrollRange
GetDCEx
AnyPopup
GetPropA
CharPrevExA
DdeCreateDataHandle
DialogBoxIndirectParamA
IsRectEmpty
CreateWindowExW
GetProcessWindowStation
InsertMenuItemW
GetCapture
GetKeyState
AppendMenuW
CreateDialogIndirectParamA
DdeQueryStringW
SendMessageW
CharLowerBuffW
InSendMessage
SetWindowsHookExW
VkKeyScanExA
DlgDirListA
FindWindowA
FlashWindow
GetWindowTextLengthA
InsertMenuA
GetScrollInfo
GetSystemMenu
CloseWindowStation
EqualRect
EndDialog
GetClassInfoA
CallMsgFilter
DrawAnimatedRects
ModifyMenuW
CloseWindow
GetClipboardFormatNameA
GetPropW
TranslateAccelerator
EnumClipboardFormats
OemToCharA
RegisterClassExA
RegisterWindowMessageW
OpenWindowStationW
GetMenuItemInfoW
GetWindowModuleFileNameW
CreatePopupMenu
MessageBoxExA
GetMenuItemInfoA
GetListBoxInfo
DdePostAdvise
EnumDisplayMonitors
CreateIconFromResource
DdeQueryConvInfo
MessageBoxA
DdeFreeStringHandle
CallNextHookEx
GetWindow
EndMenu
ChangeClipboardChain
GetActiveWindow
DefWindowProcA
DrawFrameControl
GetDlgItemTextW
CreateMenu
EnumWindows
ScrollWindowEx
UnregisterDeviceNotification
EnumDisplaySettingsA
ChangeDisplaySettingsExW
GetWindowRgn
GetScrollPos
GetTopWindow
CascadeWindows
SetWindowTextA
EnableMenuItem
BringWindowToTop
DdeGetData
DdeConnect
DestroyWindow

advapi32

RegOpenKeyA
RegRestoreKeyW
CryptEnumProvidersW
InitializeSecurityDescriptor
RegQueryValueExW

gdi32

GetDIBits
GetTextExtentExPointA
GetCharWidthW
CloseFigure
EqualRgn
GetTextCharset

kernel32

SetUnhandledExceptionFilter
GetTimeFormatA
FreeEnvironmentStringsW
ReadFileEx
HeapCreate
GetConsoleCP
InterlockedExchange
LCMapStringA
GetLocaleInfoW
VirtualFree
GetStringTypeA
CreatePipe
WriteFile
HeapAlloc
GetSystemTimeAsFileTime
SetFilePointer
GetModuleFileNameA
OpenMutexA
RaiseException
SetLastError
InterlockedDecrement
OutputDebugStringA
GetLastError
HeapValidate
GetLocaleInfoA
GetCommandLineA
GetCurrentProcess
UnhandledExceptionFilter
GetDateFormatA
lstrlenA
HeapSize
SetEnvironmentVariableA
GetStringTypeW
FreeLibrary
QueryPerformanceCounter
CreateFileA
CompareStringW
RtlUnwind
HeapReAlloc
GetCurrentThread
WritePrivateProfileStringA
EnumSystemLocalesA
LoadLibraryW
RemoveDirectoryW
MoveFileExW
LoadLibraryA
GetEnvironmentStringsW
OutputDebugStringW
GetConsoleMode
TlsGetValue
FreeEnvironmentStringsA
ResumeThread
LeaveCriticalSection
GetEnvironmentStrings
GetOEMCP
GetProcAddress
GetModuleFileNameW
FlushFileBuffers
WriteConsoleA
GetModuleHandleW
SetConsoleCtrlHandler
TlsAlloc
GetStartupInfoA
TlsFree
IsDebuggerPresent
VirtualAlloc
TerminateProcess
GetProcessHeap
WideCharToMultiByte
GetCurrentThreadId
TlsSetValue
IsValidCodePage
CompareStringA
GetTimeZoneInformation
IsValidLocale
DebugBreak
DeleteCriticalSection
GetConsoleOutputCP
GetCurrentProcessId
SetThreadContext
MultiByteToWideChar
GetCPInfo
GetUserDefaultLCID
GetFileType
HeapDestroy
HeapFree
LCMapStringW
EnterCriticalSection
GetModuleHandleA
ExitProcess
Sleep
GetStdHandle
VirtualQuery
GetACP
GetTickCount
SetHandleCount
InterlockedIncrement
SetStdHandle
IsBadReadPtr
CloseHandle
WriteConsoleW
InitializeCriticalSectionAndSpinCount
CreateMutexA
ReadFile

shell32

ShellExecuteExW
SHAddToRecentDocs
SHQueryRecycleBinW
SHGetDesktopFolder
ShellAboutA

comctl32

ImageList_GetImageInfo
CreatePropertySheetPage
ImageList_Replace
_TrackMouseEvent
CreatePropertySheetPageW
ImageList_DragMove
ImageList_BeginDrag
ImageList_Merge
CreateMappedBitmap
ImageList_GetImageRect
ImageList_LoadImageW
InitCommonControlsEx
ImageList_Destroy
ImageList_SetOverlayImage
CreateStatusWindowW
CreatePropertySheetPageA
ImageList_SetDragCursorImage
CreateStatusWindow

wininet

FtpGetFileEx
FreeUrlCacheSpaceW

Sections

.text
Size: 364KB - Virtual size: 362KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 288KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 124KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6040d8ce8ecdd2e13a54269a3d611c17

Headers

File Characteristics

Imports

user32

advapi32

gdi32

kernel32

shell32

comctl32

wininet

Sections

.text Size: 364KB - Virtual size: 362KB

.rdata Size: 288KB - Virtual size: 284KB

.data Size: 124KB - Virtual size: 141KB

.rsrc Size: 72KB - Virtual size: 71KB

.text
Size: 364KB - Virtual size: 362KB

.rdata
Size: 288KB - Virtual size: 284KB

.data
Size: 124KB - Virtual size: 141KB

.rsrc
Size: 72KB - Virtual size: 71KB