1ba460bb6a0e49ebc7ed07607ef3d0ca12343d79287f88d8c5363d5ab1484030

Sharing

Copy URL Twitter E-mail

General

Target

1ba460bb6a0e49ebc7ed07607ef3d0ca12343d79287f88d8c5363d5ab1484030
Size

992KB
MD5

b012b4c3f9742744702dc80b22ed426c
SHA1

0aa143acd5c8b9e56318664e2ad97dad03ea0c9b
SHA256

1ba460bb6a0e49ebc7ed07607ef3d0ca12343d79287f88d8c5363d5ab1484030
SHA512

e24d6c89cc70583fe8f957df04ab4735935675dcf4fc03be76fb00c77a4e3f2ced5ca18f50e0caf85a4b804a1184d2120caa0112205b40dcf9c18c69090048ed
SSDEEP

12288:UEEfR7uxFGUqchuTnMe9QNb3gKTkiQOtZrykiAxAEBBgzW65WUZYAZebOi+RP02T:UlKDh2rQNDnTFxA175TR/DNY9HIP

Score

N/A

Malware Config

Signatures

Files

1ba460bb6a0e49ebc7ed07607ef3d0ca12343d79287f88d8c5363d5ab1484030
.exe windows x86

18cf151ce1ae760e2d7cf0d522841e31

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursor
IsWindow
GetMessageTime
GetSysColor
LoadImageW
SetWindowLongA
ScrollDC
OemToCharBuffA
FindWindowExA
LoadMenuA
ReleaseCapture
GetMenuCheckMarkDimensions
GetDialogBaseUnits
InsertMenuA
SendMessageTimeoutW
EndDeferWindowPos
DefFrameProcA
GetQueueStatus
SetDlgItemTextW
GetWindowTextLengthA
SetScrollInfo
ValidateRgn
GetKeyNameTextW
GetGUIThreadInfo
SetScrollRange
GetWindowLongW
GetComboBoxInfo
InSendMessage
MonitorFromPoint
GetClipboardSequenceNumber
GetAltTabInfoA
PrintWindow
GetListBoxInfo
DefFrameProcW
OpenInputDesktop
VkKeyScanA
GetCapture
DrawCaption
DefDlgProcW
GetMouseMovePointsEx
GetClassWord
MapVirtualKeyExW
ChangeClipboardChain
GetMenuState
ValidateRect
GetLayeredWindowAttributes
DeferWindowPos
GetWindowRgn
GetAsyncKeyState
GetSystemMetrics
GetDlgCtrlID

ole32

CreateILockBytesOnHGlobal
OleCreateMenuDescriptor

advapi32

RegCreateKeyA
AdjustTokenPrivileges
OpenProcessToken

gdi32

CreateRectRgn
PtVisible
SetTextAlign

comctl32

ord17

kernel32

LCMapStringW
LCMapStringA
RtlUnwind
HeapReAlloc
VirtualAlloc
IsValidCodePage
GetOEMCP
GetCPInfo
InitializeCriticalSectionAndSpinCount
LoadLibraryA
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EnterCriticalSection
LeaveCriticalSection
GetTickCount
HeapFree
GetStringTypeA
HeapCreate
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
ExitProcess
GetProcAddress
VirtualFree
QueryPerformanceCounter
GetCommModemStatus
CreateTapePartition
FindNextChangeNotification
GetProcessHandleCount
IsProcessInJob
GetModuleFileNameA
TlsGetValue
UpdateResourceW
MapUserPhysicalPages
GetNumaAvailableMemoryNode
CreateFiberEx
AreFileApisANSI
DefineDosDeviceW
GetHandleInformation
SetFilePointerEx
CancelDeviceWakeupRequest
SetCommMask
FindFirstFileExW
ConvertThreadToFiber
GetCurrentProcessId
ClearCommBreak
ReplaceFileA
GetFileSize
GetMailslotInfo
EncodePointer
GetCurrentThread
HeapAlloc
TlsSetValue
GlobalCompact
GetProcessHeap
ReplaceFileW
GetThreadIOPendingFlag
MulDiv
DisconnectNamedPipe
RtlCaptureStackBackTrace
CreateFileA
MultiByteToWideChar
GetStringTypeW
GetLocaleInfoA
GlobalSize
lstrcmpiW
TlsAlloc
HeapSize
GetThreadContext
WritePrivateProfileStringA
LocalFree
GetDiskFreeSpaceExW
WriteProcessMemory
Sleep
GetTimeFormatA
GetSystemTimeAsFileTime
GetACP
GetCommandLineA
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleW

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 855KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 893KB - Virtual size: 892KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18cf151ce1ae760e2d7cf0d522841e31

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

advapi32

gdi32

comctl32

kernel32

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 9KB - Virtual size: 855KB

.rsrc Size: 893KB - Virtual size: 892KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 9KB - Virtual size: 855KB

.rsrc
Size: 893KB - Virtual size: 892KB