61ac83cb80399638e3d496b2fa07d9de0a09dfdb20197d0763fbc631d351ae21

Sharing

Copy URL Twitter E-mail

General

Target

61ac83cb80399638e3d496b2fa07d9de0a09dfdb20197d0763fbc631d351ae21
Size

80KB
MD5

33a99dce44622926cdeb16a03fab733a
SHA1

26979b888f6946df12ba939c7a8d46fdfc45a98b
SHA256

61ac83cb80399638e3d496b2fa07d9de0a09dfdb20197d0763fbc631d351ae21
SHA512

49d255e1b061c8732e4f6e055682ad08f855d7a859ffcb8dfeb69c057ad03fa7991764aaf0139269c5871f4177bcc95b75ba37850519c8ebf7a00cd3046ae91c
SSDEEP

768:e7Af6vSsak9wbLUKqLOT6Grt5GkQBoy1lotYKcsTUoWQraiB9GG3JxJafpuDxLte:uNKHbpqLOTwGykHTUoNrX0RktR8

Score

N/A

Malware Config

Signatures

Files

61ac83cb80399638e3d496b2fa07d9de0a09dfdb20197d0763fbc631d351ae21
.exe windows x86

4a758026489d2ff9d5135a02fab1b8ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
GetDlgItem
SetWindowLongA
SetTimer
CallWindowProcA
PostMessageA
SendMessageA
GetForegroundWindow
FindWindowExA
GetWindowThreadProcessId
AttachThreadInput
GetFocus
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
DialogBoxParamA
MessageBoxA
GetClientRect
GetClassNameA
GetWindowTextA

kernel32

FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
SetFilePointer
LoadLibraryA
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
RaiseException
CreateToolhelp32Snapshot
Process32First
CloseHandle
Process32Next
OpenProcess
lstrcpynA
GetCurrentThreadId
GetProcessHeap
GetModuleHandleA
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
IsBadReadPtr
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
GetUserDefaultLCID
LCMapStringW
LCMapStringA
TerminateProcess
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetProcAddress
WriteFile
RtlUnwind
VirtualFree
HeapCreate
GetVersionExA
GetEnvironmentVariableA
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetStartupInfoA
GetCommandLineA
GetVersion
InterlockedDecrement
InterlockedIncrement
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
HeapDestroy

wininet

InternetOpenUrlA
InternetReadFile
InternetOpenA

advapi32

RegCloseKey
RegOpenKeyA
RegQueryValueExA

ole32

CoInitialize
CoUninitialize
OleRun
CoCreateInstance
CLSIDFromString
CLSIDFromProgID

oleaut32

LoadTypeLi
LHashValOfNameSys
RegisterTypeLi
SafeArrayCreate
SysAllocString
VariantClear
SafeArrayDestroy

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4a758026489d2ff9d5135a02fab1b8ca

Headers

File Characteristics

Imports

user32

kernel32

wininet

advapi32

ole32

oleaut32

Sections

.text Size: 48KB - Virtual size: 46KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 19KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 48KB - Virtual size: 46KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 4KB - Virtual size: 3KB