0f266064c85ab6e2ecf4a76226a10d29362b92d635fd972f89c886ea674bc549

Sharing

Copy URL Twitter E-mail

General

Target

0f266064c85ab6e2ecf4a76226a10d29362b92d635fd972f89c886ea674bc549
Size

181KB
MD5

62f5edfaa9a02d64c42c6f43090ec120
SHA1

e1b70ead4325a7a9e42773a821b2939b6b7535bf
SHA256

0f266064c85ab6e2ecf4a76226a10d29362b92d635fd972f89c886ea674bc549
SHA512

c1aba9bbbc3b4e779350cd1d147abe06dda8da7277c1050319109161804d0fead0b2583045289c3578b73c38c907d93af69e5048bbbb1987df6f9dca1b86197e
SSDEEP

3072:OtyLpR4XHY6KfRSN6ZE4iw/FxhkwkfY1XV3OZDfR9VR/i:Oydq3Y6tN6ZXh6VRK

Score

N/A

Malware Config

Signatures

Files

0f266064c85ab6e2ecf4a76226a10d29362b92d635fd972f89c886ea674bc549
.exe windows x86

7b52bc3b8afd9c5d621cd9fcd6dc6c14

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
CreateFileW
LCMapStringW
CreateFileA
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
HeapReAlloc
IsProcessorFeaturePresent
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
LoadLibraryW
SetFilePointer
MultiByteToWideChar
WriteConsoleW
GetStringTypeW
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetProcessHeap
CloseHandle
GetNumberFormatW
GetLastError
lstrcatA
EnumSystemCodePagesA
GetLocaleInfoW
HeapCreate
GetTickCount
GetCurrentProcess
GetSystemTimeAsFileTime
HeapAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
GetFileAttributesA
GetModuleFileNameW
DuplicateHandle
EnterCriticalSection
LeaveCriticalSection
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
SetHandleCount
GetStdHandle
DeleteCriticalSection
Sleep
EncodePointer
HeapFree
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
FlushFileBuffers
ReadFile

user32

GetScrollInfo
MoveWindow
SetDlgItemTextA
GetDlgItemTextA
SendMessageW
SetWindowTextA
EndPaint
GetWindowRect
SendDlgItemMessageA
SetForegroundWindow
LoadStringA
GetParent
LoadIconA
SetFocus
BeginPaint
GetDC
SetWindowLongA
GetForegroundWindow
MessageBoxA
InvalidateRect
GetWindowLongA
CreateWindowExA
ReleaseDC
GetDlgItem
EndDialog
GetSysColor
SetWindowPos
ShowWindow
PostMessageA

gdi32

CreateFontIndirectW
GetCurrentObject
SetDCBrushColor
DeleteObject
SelectObject
Rectangle
GetTextExtentPointW
CreatePen
GetObjectA
GetStockObject
CreateSolidBrush
GetTextMetricsW

ole32

CoTaskMemFree
CoInitializeEx
CoUninitialize
CoCreateInstance

winmm

mciSendStringA

shlwapi

StrCpyNW

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b52bc3b8afd9c5d621cd9fcd6dc6c14

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

winmm

shlwapi

Sections

.text Size: 90KB - Virtual size: 90KB

.rdata Size: 48KB - Virtual size: 47KB

.data Size: 5KB - Virtual size: 14KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 27KB - Virtual size: 27KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 90KB - Virtual size: 90KB

.rdata
Size: 48KB - Virtual size: 47KB

.data
Size: 5KB - Virtual size: 14KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 27KB - Virtual size: 27KB

.reloc
Size: 8KB - Virtual size: 8KB