bde5636db9988e78972174a4855d484b0affca194f8a3f478476a7468f4ac954

Sharing

Copy URL

Twitter E-mail

General

Target

bde5636db9988e78972174a4855d484b0affca194f8a3f478476a7468f4ac954
Size

289KB
MD5

00d7c1398d65aae33b955e5692c68d6e
SHA1

07739b519efa8ec946adb721660bb3959d89bc63
SHA256

bde5636db9988e78972174a4855d484b0affca194f8a3f478476a7468f4ac954
SHA512

5048fb0f6eb0949ab544d4a805caa278aedc5b930678470ebbb8e91c3fd4f85406d9d8faa8c55f47d5faf1b6e075d94777f45ac348f443de82dcee8c5174affc
SSDEEP

6144:oGa2IKa1hZ5u1mCW7htsoBljmqIPR+dNLmi8bpRUTaKFQhh:Di1NNCW7htsuFA+d8i8y4h

Score

N/A

Malware Config

Signatures

Files

bde5636db9988e78972174a4855d484b0affca194f8a3f478476a7468f4ac954
.exe windows x86

e3046f405a5240ce94c63170f709cbe1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
EnumSystemLocalesA
GetCurrentDirectoryW
LeaveCriticalSection
SetFilePointer
FileTimeToLocalFileTime
OpenEventW
SetEndOfFile
SetEnvironmentVariableA
GetVersionExA
GetExitCodeProcess
GetDateFormatA
InterlockedExchange
GetConsoleOutputCP
HeapFree
DeleteCriticalSection
DeleteFileW
FindFirstFileW
GlobalLock
GetStartupInfoA
GetLocaleInfoA
GetStringTypeA
ReadFile
GetModuleFileNameW
GetCommandLineA
SetLastError
GetACP
GetSystemTimeAsFileTime
CompareStringW
InterlockedDecrement
GetTempPathW
IsValidCodePage
MulDiv
LocalFree
GetCPInfo
GlobalSize
FindClose
lstrcpynW
VirtualAllocEx
GetProcAddress
LoadLibraryA
LCMapStringW
LCMapStringA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
HeapSize
VirtualQuery
RtlUnwind
IsBadWritePtr
VirtualAlloc
HeapAlloc
FlushFileBuffers
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
WriteFile
GetCurrentProcess
TerminateProcess
ExitProcess
GetLastError
GetModuleHandleA
lstrlenW
WaitForSingleObject
GetDriveTypeA
GetSystemInfo
CloseHandle
QueryPerformanceCounter
CreateFileW
GetStdHandle
WriteConsoleW
VirtualProtect
lstrcmpiW
GetProcessHeap
GetDateFormatW
GetCurrentDirectoryA
HeapReAlloc
GetOEMCP
SetStdHandle
FindResourceW
MultiByteToWideChar
GetStringTypeW
GetVersionExW
FileTimeToSystemTime
lstrcmpW
GlobalUnlock
FormatMessageW
CreateMutexW
VirtualFree
GlobalFree
GetModuleFileNameA
GetTimeZoneInformation
CreateEventW
UnhandledExceptionFilter
TlsFree
CreateFileA
SetUnhandledExceptionFilter
lstrcatW

user32

GetMenuItemCount
CallWindowProcA
GetMenuItemID
PtInRect
OpenClipboard
DrawEdge
CreateDialogIndirectParamW
SetForegroundWindow
CreateCursor
GetMenuStringW
GetWindowRect
IsChild
CreateCaret
GetSystemMetrics
GetMenuState
FrameRect
DialogBoxParamW
DrawMenuBar
DestroyCaret
MapWindowPoints
IsIconic
FillRect
ToAscii
UpdateWindow
SetParent
TrackPopupMenu
EnableMenuItem
GetDC
SetScrollPos
GetMonitorInfoW
wsprintfW
AppendMenuW
DispatchMessageW
RealChildWindowFromPoint
GetSubMenu
ModifyMenuW
ReleaseCapture
DestroyWindow
RedrawWindow
GetKeyState
GetKeyboardState
LoadImageW
BeginDeferWindowPos
InsertMenuW
LoadBitmapW
CheckMenuItem
DrawFrameControl
SetFocus
ShowCaret
TranslateMessage
WindowFromPoint
GetFocus
SendDlgItemMessageW
GetClassNameW
CreateMenu
EndDeferWindowPos
LoadMenuW
GetActiveWindow
GetSysColor
SetCursor
ShowScrollBar
SetDlgItemTextW
RegisterClassExW
DrawTextExW
InflateRect
DestroyIcon

gdi32

DPtoLP
Rectangle
SetTextColor
SetBrushOrgEx
SetROP2
CreatePatternBrush
GetDeviceCaps
SetBkColor
CreatePen
CreateSolidBrush
CreateFontW
GetROP2
EndDoc
CreateCompatibleDC
SelectObject
CreateBitmap
GetPixel
ExtTextOutW
SaveDC
MoveToEx
GetTextMetricsW
DeleteObject
SetTextAlign
CreateHatchBrush
StartPage
GetObjectW
DeleteDC
GetStockObject
GetTextExtentPoint32W
SetBkMode
SetWindowOrgEx
BitBlt
CreateFontIndirectW
RemoveFontResourceW

comdlg32

ChooseFontA
GetSaveFileNameA
ChooseColorW
GetFileTitleW
GetFileTitleA
PageSetupDlgW
GetSaveFileNameW
ChooseFontW
PrintDlgA
GetOpenFileNameW
FindTextW
PrintDlgW
ChooseColorA
PageSetupDlgA
ReplaceTextA
ReplaceTextW
FindTextA
GetOpenFileNameA

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zoitxld
Size: - Virtual size: 80KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 194KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e3046f405a5240ce94c63170f709cbe1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 51KB - Virtual size: 111KB

.rsrc Size: 4KB - Virtual size: 32KB

zoitxld Size: - Virtual size: 80KB

.text Size: 194KB - Virtual size: 196KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 51KB - Virtual size: 111KB

.rsrc
Size: 4KB - Virtual size: 32KB

zoitxld
Size: - Virtual size: 80KB

.text
Size: 194KB - Virtual size: 196KB