3709701f94eb4994179f10a902e8c4ed97ceb393227e70e572b22e6b13b0782a

Sharing

Copy URL Twitter E-mail

General

Target

3709701f94eb4994179f10a902e8c4ed97ceb393227e70e572b22e6b13b0782a
Size

86KB
MD5

fee9c84d72c79ddfda68e3ecb2ac032f
SHA1

3fd21c06b4770d13d02b5b081eb61267db3eff34
SHA256

3709701f94eb4994179f10a902e8c4ed97ceb393227e70e572b22e6b13b0782a
SHA512

c0a415c6757948f03193fef4c82e5c78bad1babf8ba56b8e1a7629a748eaf62b6bb72bb4ee2a1371b8680a851640c20a2502e7db599d803ef470a75e1fc8ff87
SSDEEP

1536:DO2zfVqp+BdQizLlRBWIuplMNkOTnEBOqgp6CcjS6SWpbtfD0:DO2zop+7JHLsqaOdpLcj3pp0

Score

N/A

Malware Config

Signatures

Files

3709701f94eb4994179f10a902e8c4ed97ceb393227e70e572b22e6b13b0782a
.exe windows x86

5d384c57bed74979d7dbcc2cefa2e249

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsProcessorFeaturePresent
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapReAlloc
HeapSize
LoadLibraryW
GetStringTypeW
LCMapStringW
RtlUnwind
WriteConsoleW
Sleep
RaiseException
GetCurrentProcessId
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetStdHandle
ExitProcess
IsValidCodePage
GetOEMCP
SetStdHandle
CreateFileW
GetSystemTime
CloseHandle
GetLocalTime
CreateNamedPipeA
GetLastError
DisconnectNamedPipe
GetFileSizeEx
MultiByteToWideChar
HeapCreate
ReadFile
GlobalAlloc
WriteFile
GetTickCount
ConnectNamedPipe
QueryPerformanceCounter
GetCurrentProcess
HeapAlloc
lstrlenA
GetACP
GetCPInfo
GetProcAddress
InterlockedDecrement
GetCurrentThreadId
SetLastError
GetModuleHandleW
InterlockedIncrement
HeapFree
WideCharToMultiByte
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
DecodePointer
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree

user32

TranslateMDISysAccel
DestroyWindow
GetMessageA
SetTimer
RegisterClassA
PostQuitMessage
FillRect
KillTimer
LoadIconA
GetClientRect
SetFocus
SendMessageA
GetDC
DrawFocusRect
TranslateMessage
LoadAcceleratorsW
CreateIcon
MessageBoxA
TranslateAcceleratorA
GetDlgItem
EndDialog
ShowWindow
DrawMenuBar
DispatchMessageA
MessageBoxW
LoadCursorA
CheckMenuItem
EnumWindows

gdi32

DeleteDC
StretchBlt
SetPixel
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
Rectangle
GetTextMetricsA
GetStockObject
TextOutA
BitBlt

comdlg32

PrintDlgExA

advapi32

RegCloseKey
RegOpenKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegSetValueExA

shell32

Shell_NotifyIconA

ws2_32

WSAStartup

mpr

WNetOpenEnumA

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d384c57bed74979d7dbcc2cefa2e249

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ws2_32

mpr

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 27KB - Virtual size: 35KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 27KB - Virtual size: 35KB

.rsrc
Size: 2KB - Virtual size: 1KB