1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9

Sharing

Copy URL

Twitter E-mail

General

Target

1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9
Size

179KB
MD5

1ee116e38cc5709401e181495991811d
SHA1

6b4fae97c212a4cdab1be2f480797b53784d0210
SHA256

1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9
SHA512

cd37518399cf9299a77f64907b4e843744e65ea1cec3b293835d35e1e59278fbc93e17bce82d984de32110172459a8d3441895a6e80976aaa0ecfaa498db1386
SSDEEP

3072:6JIRH8MiBKlghdTeDco1Hxbu30/BLEypsLS88:MsH8MgrTeVN/tEyps

Score

N/A

Malware Config

Signatures

Files

1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9
.exe windows x86

f1dd5d48c59d6b907bd24e3d42a70b7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryExA
FindFirstFileA
lstrcmpA
GetACP
GetStdHandle
LocalAlloc
ExitProcess
LoadResource
LoadLibraryA
GetStringTypeA
ExitThread
CloseHandle
GetModuleHandleA
GetVersionExA
GetCPInfo
VirtualAllocEx

user32

IsWindowUnicode
LoadKeyboardLayoutA
IsDialogMessageW
SetClipboardData
ReleaseCapture
DrawIcon
GetSysColorBrush
GetWindowLongA
IsIconic
MapWindowPoints
SetParent
LoadCursorA
GetIconInfo
IsWindow
GetCursorPos
ScrollWindow
InsertMenuItemA
UnregisterClassA
DrawTextA
CreateIcon
RegisterClipboardFormatA
OemToCharA
GetActiveWindow
GetMenuState
GetClassNameA
CharNextW
MsgWaitForMultipleObjects
TrackPopupMenu
GetKeyboardLayout
LoadStringA
ChildWindowFromPoint
KillTimer
GetKeyState
DestroyWindow
CreatePopupMenu
CallNextHookEx
GetKeyboardType
RemovePropA
EndPaint
GetClassLongA
GetCursor
EnableWindow
LoadIconA
SetClassLongA
TranslateMessage
WindowFromPoint
FillRect
InvalidateRect
EnableMenuItem
GetDCEx
SetForegroundWindow
InsertMenuA
IsZoomed
IsRectEmpty
CloseClipboard
RegisterClassA
GetScrollRange
GetKeyNameTextA
GetSubMenu
GetDC
IsChild
FrameRect
GetSysColor
GetKeyboardLayoutNameA
GetMenuItemID
CharUpperBuffA
DestroyIcon
ClientToScreen
TranslateMDISysAccel
PeekMessageA
CharLowerA
GetClientRect
ReleaseDC
ShowOwnedPopups
GetDlgItem
GetWindowLongW
RedrawWindow
SetScrollPos
GetWindowPlacement
EqualRect
GetMessagePos
ShowWindow
GetForegroundWindow
EnableScrollBar
SetScrollInfo
DefFrameProcA
wsprintfA
WaitMessage
AdjustWindowRectEx
GetMenuStringA
GetClipboardData
PostQuitMessage
SetWindowPos
CharNextA
IntersectRect
MessageBoxA
IsWindowEnabled
DrawEdge
CreateWindowExA
GetScrollInfo
GetClassInfoA
GetKeyboardState
IsDialogMessageA
EnumWindows
SetWindowsHookExA
GetSystemMenu
SendMessageA
GetWindow
DefMDIChildProcA
SetScrollRange
SetCursor
SendMessageW
GetKeyboardLayoutList
CharLowerBuffA
DrawAnimatedRects
GetDesktopWindow
GetWindowThreadProcessId
SetWindowPlacement
GetWindowTextA
GetScrollPos
GetLastActivePopup
GetFocus
GetWindowRect
DeleteMenu

ole32

CoRevokeClassObject

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 130KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1dd5d48c59d6b907bd24e3d42a70b7c

Headers

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 35KB - Virtual size: 34KB

.data Size: 130KB - Virtual size: 237KB

.rdata Size: 2KB - Virtual size: 1KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 35KB - Virtual size: 34KB

.data
Size: 130KB - Virtual size: 237KB

.rdata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 10KB - Virtual size: 10KB