9f6e31e7b45b2e4622fe4144b2d454874abc6c569a77ff4ee08fc064a569e976

Sharing

Copy URL Twitter E-mail

General

Target

9f6e31e7b45b2e4622fe4144b2d454874abc6c569a77ff4ee08fc064a569e976
Size

308KB
MD5

0bbfe37d7fdea838ca7f503373b6d5cb
SHA1

c0be1ab85821d57fc51d283eea9b5a9178089e15
SHA256

9f6e31e7b45b2e4622fe4144b2d454874abc6c569a77ff4ee08fc064a569e976
SHA512

b518037a65e71523ea117b298f33254982e48798704d9d8c13617fcc04f105b0d9a1694be021027e299edf21e8d60d7538a12de8bf36fc94c6631218d9bb4eb5
SSDEEP

6144:Rrqk6h1AA1X3pwZmTT4VU9vKbURF/AD+8K05aR7MjP1Kqlto:RQIMmZmTmGFqKeP

Score

N/A

Malware Config

Signatures

Files

9f6e31e7b45b2e4622fe4144b2d454874abc6c569a77ff4ee08fc064a569e976
.exe windows x86

58d7450aff38800352dfe0135e2703b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoCreateInstance
CLSIDFromString
CoInitialize
ProgIDFromCLSID
CLSIDFromProgID
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2

kernel32

RaiseException
GetFileTime
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjects
FindClose
lstrlenW
IsDebuggerPresent
CreateFileMappingW
GetSystemInfo
GetUserDefaultUILanguage
LockFileEx
GetACP
lstrlenA
VirtualQuery
VirtualAlloc
LoadLibraryExW
GetModuleHandleW
WriteFile
CloseHandle
SetFileTime
SetLastError
OpenProcess
ReleaseSemaphore
SetUnhandledExceptionFilter
FormatMessageW
SwitchToThread
UnmapViewOfFile
GetSystemTimeAsFileTime
ReadFile
GetFileSize
MapViewOfFileEx
MapViewOfFile
GetFileAttributesExW
LocalAlloc
DeleteCriticalSection
FindNextFileW
GetLongPathNameW
VirtualFree
LCMapStringW
SetProcessWorkingSetSize
LoadResource
UnhandledExceptionFilter
SetFilePointer
UnlockFileEx
CreateFileW
GetFileType
ReleaseMutex
GetConsoleOutputCP
lstrcmpiW
FindFirstFileW
GetShortPathNameW
FindResourceW
FreeLibrary
OpenFileMappingW
GetCurrentThreadId
GetComputerNameW
GetConsoleMode
IsProcessorFeaturePresent
SizeofResource
InitializeCriticalSectionAndSpinCount
CreateSemaphoreW
VirtualAllocEx

advapi32

RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
CryptDestroyHash
CryptGetHashParam
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
CryptAcquireContextW
RegEnumKeyExW
CryptCreateHash
CryptHashData
CryptGenRandom
RegCloseKey
CryptReleaseContext

comctl32

CreateStatusWindow
ImageList_SetBkColor
CreatePropertySheetPageA
LBItemFromPt
ImageList_Copy
ImageList_Remove
GetEffectiveClientRect
ImageList_Replace
CreateStatusWindowW
ImageList_BeginDrag

user32

SetWindowLongW

kbdmon

KbdLayerDescriptor

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 45KB - Virtual size: 727KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 167KB - Virtual size: 567KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 701KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58d7450aff38800352dfe0135e2703b6

Headers

File Characteristics

Imports

ole32

kernel32

advapi32

comctl32

user32

kbdmon

Sections

.text Size: 16KB - Virtual size: 15KB

.bss Size: 45KB - Virtual size: 727KB

.reloc Size: 167KB - Virtual size: 567KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 65KB - Virtual size: 701KB

.rsrc Size: 10KB - Virtual size: 21KB

.text
Size: 16KB - Virtual size: 15KB

.bss
Size: 45KB - Virtual size: 727KB

.reloc
Size: 167KB - Virtual size: 567KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 65KB - Virtual size: 701KB

.rsrc
Size: 10KB - Virtual size: 21KB