77ecdda52fe776403d4dacfdc8bf940fae350eab8bf78a49f1d65601863c0362

Sharing

Copy URL Twitter E-mail

General

Target

77ecdda52fe776403d4dacfdc8bf940fae350eab8bf78a49f1d65601863c0362
Size

68KB
MD5

00cfc6f2c22ff2f0fedb2bffdeeec3c2
SHA1

24327d27bb596a466b001667b13ff8d64c529a8d
SHA256

77ecdda52fe776403d4dacfdc8bf940fae350eab8bf78a49f1d65601863c0362
SHA512

1fb0d1f8dcd1425708cbef6922032cceeba59caf141c3f1dc6bd00be684d441ca0b04aca8670a0fc8740a0e2aec117888b83a24ea46f1684ec17adcd35ab20e1
SSDEEP

768:h1ylXAK9dm3Ogn9ns/LXY4ZZ4ZLSmtwG4ejujMH+SGDo5Vby1peY1WVr4NXtOiaV:h1oXbdm3Psc4qtwGptH+ZokF9Vzy

Score

N/A

Malware Config

Signatures

Files

77ecdda52fe776403d4dacfdc8bf940fae350eab8bf78a49f1d65601863c0362
.exe windows x86

9a7a1ff1eb7109fb98a9a82bd18135fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextFileA
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleHandleA
CloseHandle
CreateProcessA
CreateFileA
GetTempFileNameA
GetTempPathA
SystemTimeToFileTime
GetSystemTime
GetVolumeInformationA
GetWindowsDirectoryA
lstrcmpiA
WriteFile
LCMapStringW
LCMapStringA
ReadFile
SetStdHandle
FindClose
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
SetFilePointer
GetLastError
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapReAlloc
VirtualAlloc
VirtualFree
RemoveDirectoryA
GetModuleFileNameA
GetEnvironmentVariableA
Sleep
GetCurrentDirectoryA
FindFirstFileA
CreateDirectoryA
CopyFileA
GetOEMCP
HeapCreate
HeapDestroy
GetVersion
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapFree
GetCurrentProcess
TerminateProcess
ExitProcess
FlushFileBuffers

user32

SendMessageA
ShowWindow
SetWindowTextA
MoveWindow
FindWindowA
GetWindowRect
EndDialog
GetDlgItem
MessageBoxA
PostMessageA
GetSystemMetrics
DefWindowProcA
SystemParametersInfoA
KillTimer
PostQuitMessage
CreateWindowExA
SetTimer
LoadIconA
LoadCursorA
RegisterClassExA
SetForegroundWindow
GetMessageA
TranslateMessage
DispatchMessageA
DialogBoxParamA

advapi32

RegDeleteValueA
RegEnumKeyExA
RegQueryValueExA
RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA

shell32

ShellExecuteA

wininet

InternetReadFile
HttpQueryInfoA
InternetSetOptionA
InternetQueryOptionA
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetCloseHandle
InternetGetConnectedState
InternetOpenA
InternetCrackUrlA

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a7a1ff1eb7109fb98a9a82bd18135fd

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

wininet

Sections

.text Size: 40KB - Virtual size: 37KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 14KB

.rsrc Size: 12KB - Virtual size: 10KB

.text
Size: 40KB - Virtual size: 37KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 14KB

.rsrc
Size: 12KB - Virtual size: 10KB