6f298fb277526c82dd1355f056ac6a036ac0807985053632c5f559403c68a8ba

Sharing

Copy URL Twitter E-mail

General

Target

6f298fb277526c82dd1355f056ac6a036ac0807985053632c5f559403c68a8ba
Size

847KB
MD5

5cbedc81d0ec76d5ff325e90f2aa4800
SHA1

ca98d47c938fdbe908d2f064e5296e8d192ea778
SHA256

6f298fb277526c82dd1355f056ac6a036ac0807985053632c5f559403c68a8ba
SHA512

d3e7ce8b8508f614523ebf2fdec0ed1cfc5c9e37560b8c9686dec68ab983cc37913ed229697f2355afbbb40f6d7f98c9f1847edd1e0dc33f58087a6275d948f6
SSDEEP

3072:3IHXEUbrKGwZheTmC5MQzU/eTUXWsxTZRtLoLiznSJqNaf8TjtuznHC:4UFrIMcS9Ws3bLxSs30znHC

Score

N/A

Malware Config

Signatures

Files

6f298fb277526c82dd1355f056ac6a036ac0807985053632c5f559403c68a8ba
.exe windows x86

3b33224b5e14e43637a553fa55b84c57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetTrusteeFormA
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW
GetManagedApplications
LsaClose
LsaFreeMemory

gdi32

LineTo
SetBitmapDimensionEx
SetBoundsRect
FlattenPath
GetDIBColorTable

kernel32

VirtualAlloc
DisableThreadLibraryCalls
EnumCalendarInfoExW
GetCurrentProcess
GetProcessTimes
GlobalMemoryStatusEx
InitializeCriticalSectionAndSpinCount
LocalAlloc
LocalFree
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
WideCharToMultiByte
GetCalendarInfoW
Sleep
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
InterlockedCompareExchange
InterlockedExchange
QueryPerformanceCounter
ReadConsoleOutputA
SetSystemTime
lstrlenW
FormatMessageW
RtlUnwind
GetLastError
HeapValidate
HeapFree
HeapAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
GetCommandLineA
GetVersionExA
GetProcessHeap
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
DeleteCriticalSection
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
SetFilePointer
ReadFile
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WriteFile
GetStdHandle
GetModuleFileNameA
SetConsoleCtrlHandler
FreeLibrary
LoadLibraryA
InitializeCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
RaiseException
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
MultiByteToWideChar
CloseHandle
CreateFileA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetFileAttributesA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
HeapSize
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetTimeZoneInformation
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA

oleaut32

QueryPathOfRegTypeLi
VarXor
VariantChangeType
VariantTimeToDosDateTime
VarI4FromStr
BSTR_UserUnmarshal

rpcrt4

I_RpcMapWin32Status
NdrFullPointerQueryRefId
NdrPointerBufferSize
UuidFromStringW
UuidToStringW
NdrDllRegisterProxy
NdrDllUnregisterProxy

user32

GetScrollRange
PackDDElParam
ScrollWindowEx
CreateCursor
GetMenuItemInfoA
GetWindowDC
GetWindowLongW
LoadKeyboardLayoutW
LoadMenuA
LoadStringW
SetDlgItemTextW
SetWindowLongW
WinHelpW

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 552KB - Virtual size: 550KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3b33224b5e14e43637a553fa55b84c57

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

oleaut32

rpcrt4

user32

Sections

.text Size: 180KB - Virtual size: 179KB

.rdata Size: 552KB - Virtual size: 550KB

.data Size: 108KB - Virtual size: 117KB

.text
Size: 180KB - Virtual size: 179KB

.rdata
Size: 552KB - Virtual size: 550KB

.data
Size: 108KB - Virtual size: 117KB