83079cc222b9a4e54eebcfb6fd26c51e362b74c4c7b04c74795c4f2c4b9f0651

Sharing

Copy URL Twitter E-mail

General

Target

83079cc222b9a4e54eebcfb6fd26c51e362b74c4c7b04c74795c4f2c4b9f0651
Size

373KB
MD5

7270356e3d5d09e44337800fbe458a12
SHA1

b261789a908be5b82616a82600d188873f66e398
SHA256

83079cc222b9a4e54eebcfb6fd26c51e362b74c4c7b04c74795c4f2c4b9f0651
SHA512

196df3d8d64de5008a76d416de271cc7415036d199f38e2b0daec222d049e8f41506fd556a30c7d4ba13db4806e3babc82e03e6342a08a21efefe176c3fea693
SSDEEP

6144:pkpO3YGg8Pe+BLsst8b7ykmQTtmHNbxpaLtrrEwzcmlAQIBb3K2321y/VTirCIJf:BIfvHOk3Ttm5cYmlQBzcS0rCIHR

Score

N/A

Malware Config

Signatures

Files

83079cc222b9a4e54eebcfb6fd26c51e362b74c4c7b04c74795c4f2c4b9f0651
.exe windows x86

a00c2e3b98a91ebc4cacbc97840bf71d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
AdjustWindowRect
GetSysColor
GetNextDlgTabItem
EndDeferWindowPos
ChildWindowFromPoint
GetWindowPlacement
CascadeWindows
GetWindowThreadProcessId
IsZoomed
GetClientRect
IsWindow
EnumWindows

gdi32

CancelDC
GetBkMode
GdiGetBatchLimit
ExtCreateRegion
GetBkColor
CreateFontW
AddFontResourceA
CreateDiscardableBitmap
CreateFontA
AngleArc
GdiFlush

kernel32

GetCPInfo
LeaveCriticalSection
GetACP
HeapAlloc
VirtualAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
CreateSemaphoreA
GetOverlappedResult
GetProcessHeap
GetOEMCP
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
LocalSize
GetDateFormatA
SetEvent
GetProcAddress
CopyFileA
VirtualAllocEx
EnterCriticalSection
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetLastError

secur32

DeleteSecurityContext
CompleteAuthToken
MakeSignature
ExportSecurityContext
EncryptMessage
AcceptSecurityContext
ApplyControlToken

netapi32

NetUserDel
NetGetAnyDCName
NetFileGetInfo
NetGetDCName
NetConfigGet
NetErrorLogClear
NetConfigGetAll
NetErrorLogRead
NetAuditClear
NetGetJoinableOUs

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.synbrx
Size: 333KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a00c2e3b98a91ebc4cacbc97840bf71d

Headers

File Characteristics

Imports

user32

gdi32

kernel32

secur32

netapi32

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 79KB

.synbrx Size: 333KB - Virtual size: 332KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 79KB

.synbrx
Size: 333KB - Virtual size: 332KB

.rsrc
Size: 3KB - Virtual size: 2KB