9ef3fa5bdba8825bf03f8b0ac2aa8b9047d32002be4c89bf2c9cb486970fb9f6

Sharing

Copy URL Twitter E-mail

General

Target

9ef3fa5bdba8825bf03f8b0ac2aa8b9047d32002be4c89bf2c9cb486970fb9f6
Size

151KB
MD5

55c0619655a45203de11b85c1f39f3f0
SHA1

da6913573846d4b63a79ac67db653269e9447137
SHA256

9ef3fa5bdba8825bf03f8b0ac2aa8b9047d32002be4c89bf2c9cb486970fb9f6
SHA512

0b5d2e1f4946c6d88a2fe9439c821d3242012a95c009bb8b5e365b7e7e26b5940034e442f5b07ecdbc10081527e437f49602fdd10f895a68f9f69ee379fc18ef
SSDEEP

3072:MZDrz7HYqcpzXM5ouiC5lEAPFU3XhBre7FXOx/fIo:M1rPHYqcpzv4RU3xAFE7

Score

N/A

Malware Config

Signatures

Files

9ef3fa5bdba8825bf03f8b0ac2aa8b9047d32002be4c89bf2c9cb486970fb9f6
.exe windows x86

2c28651427f71e345fe3978afe6e8802

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP

Imports

kernel32

CreateThread
CompareStringW
CreateFileW
WriteConsoleW
HeapSize
FlushFileBuffers
HeapReAlloc
GetStringTypeW
LCMapStringW
IsProcessorFeaturePresent
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
CloseHandle
HeapCreate
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
RaiseException
GetTimeZoneInformation
WideCharToMultiByte
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetVersionExA
OutputDebugStringA
WaitForMultipleObjects
LoadLibraryA
GetProcAddress
GetLastError
ReleaseSemaphore
LoadLibraryW
CreateSemaphoreA
GetACP
InterlockedDecrement
Sleep
IsBadReadPtr
WaitForSingleObject
GetCurrentProcess
HeapAlloc
FreeLibrary
InterlockedIncrement
GetCPInfo
MultiByteToWideChar
RtlUnwind
InitializeCriticalSectionAndSpinCount
SetEnvironmentVariableA
GetModuleFileNameW
GetStdHandle
WriteFile
LeaveCriticalSection
EnterCriticalSection
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleW
IsDebuggerPresent
HeapFree
GetTimeFormatA
GetDateFormatA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

MoveWindow
SetDlgItemTextA
DialogBoxParamA
LoadCursorA
FindWindowA
UpdateWindow
SendMessageW
SetWindowTextA
PostMessageA
AppendMenuA
ShowWindow
GetSystemMenu
ScreenToClient
GetWindowRect
SendDlgItemMessageA
GetMenuItemID
GetSubMenu
SetForegroundWindow
LoadStringA
GetParent
LoadIconA
MenuItemFromPoint
EnumWindows
GetCapture
GetForegroundWindow
GetMenu
GetMenuItemRect
TrackPopupMenuEx
SetWindowLongA
GetScrollInfo
InvalidateRect
GetWindowLongA
SetClassLongA
GetDlgItem
EndDialog
SetWindowPos
GetCursorPos

gdi32

GetDeviceCaps
GetCurrentObject

winspool.drv

ClosePrinter

advapi32

IsValidSid
LookupAccountNameW
ConvertSidToStringSidW

gdiplus

GdipFree
GdipDeletePen
GdipDeleteGraphics
GdipDrawImageRectI
GdipLoadImageFromFile
GdipDisposeImage
GdipCreateFromHDC
GdipCloneImage
GdipDrawLineI
GdipCreatePen1
GdipAlloc

opengl32

glVertex3f
glBegin
glNormal3f
glEnd
glClear

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c28651427f71e345fe3978afe6e8802

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

gdiplus

opengl32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 61KB - Virtual size: 60KB

.data Size: 5KB - Virtual size: 14KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 61KB - Virtual size: 60KB

.data
Size: 5KB - Virtual size: 14KB

.rsrc
Size: 17KB - Virtual size: 16KB