9b07bd5047963c7c5efca23b573ca50f73daedc60ae201da5438891ca168d9eb

Sharing

Copy URL Twitter E-mail

General

Target

9b07bd5047963c7c5efca23b573ca50f73daedc60ae201da5438891ca168d9eb
Size

127KB
MD5

c162544abd70e39f79f73a55297307c0
SHA1

2a80a5d592822e3c0bc833e8bdea2f35eb635d88
SHA256

9b07bd5047963c7c5efca23b573ca50f73daedc60ae201da5438891ca168d9eb
SHA512

e3941ce0eb315d28c123fc77323436ad49044edb8bf7a95d9ee059b458e2b55940f26ead278d1249e7766a21d5df1c1e15682d21d516777281caf55b3edaf639
SSDEEP

3072:IUbCFCr1Y0jhxBo1Lk/GqIwHun7/3TDVe++M7x4Hg:IgWChY0Fg1KGqIwY/3TDVeKxyg

Score

N/A

Malware Config

Signatures

Files

9b07bd5047963c7c5efca23b573ca50f73daedc60ae201da5438891ca168d9eb
.exe windows x86

bb1ad2cb25a0899a942278b85ce75c6c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEvent
SetUnhandledExceptionFilter
Sleep
OpenProcess
UnhandledExceptionFilter
WideCharToMultiByte
lstrcatA
lstrcpyA
lstrcpynA
lstrlenA
OpenEventA
MultiByteToWideChar
LoadLibraryExA
InterlockedIncrement
InterlockedDecrement
GetVersionExA
GetTickCount
GetSystemTimeAsFileTime
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetComputerNameA
FreeLibrary
CreateProcessA
CreateEventA
CompareStringA
CloseHandle
AddAtomA
CreateFileA
VirtualAlloc
GetProcessHeap
GetStartupInfoW
TerminateProcess
GetOEMCP

user32

LoadIconW
LoadIconA

gdi32

SetRectRgn
SetPixel
SetBkColor
SelectObject
PatBlt
MoveToEx
LineTo
GetTextMetricsW
GetTextExtentPoint32W
GetPixel
GetDeviceCaps
DeleteObject
SetTextColor
CreateSolidBrush
CreateRectRgn
CreatePen
CreateICW
CreateFontIndirectW
CreateCompatibleDC
CreateCompatibleBitmap
CombineRgn
BitBlt
GetStockObject
TextOutW
DeleteDC
StretchBlt

advapi32

RegOpenKeyExA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1024B - Virtual size: 521B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb1ad2cb25a0899a942278b85ce75c6c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.text2 Size: 512B - Virtual size: 100B

.data Size: 117KB - Virtual size: 116KB

.text Size: 1024B - Virtual size: 521B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 4KB

.text2
Size: 512B - Virtual size: 100B

.data
Size: 117KB - Virtual size: 116KB

.text
Size: 1024B - Virtual size: 521B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB