6e2c036d60c33b7a4731aa376c0b9f67a922951dfba10f9e2700dfc9c6ebac76

Sharing

Copy URL Twitter E-mail

General

Target

6e2c036d60c33b7a4731aa376c0b9f67a922951dfba10f9e2700dfc9c6ebac76
Size

109KB
MD5

e1af65842fe48e4b185aaa59e42b5975
SHA1

a6a3b0e3564d2d47896ef6578d80d871500fb1a1
SHA256

6e2c036d60c33b7a4731aa376c0b9f67a922951dfba10f9e2700dfc9c6ebac76
SHA512

d6ef3db30318c0591a0338ca671d5062072a0d8111cf27c28c03dba5411fa0c657c33c64c4cd47fefa61c24d979cec198a6ddb18cfcd20e7894419b3bdbed7a0
SSDEEP

1536:08RHJR5yfzQYZCfRnaG10smKSIh63k/CmenBwiq2W0/E/MzampTT5:TREfzMZaCmKSmX8W08MzampT

Score

N/A

Malware Config

Signatures

Files

6e2c036d60c33b7a4731aa376c0b9f67a922951dfba10f9e2700dfc9c6ebac76
.exe windows x86

ac75b7a599fe34743c799799663cccdc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetOpenW
InternetCloseHandle
InternetOpenUrlA
InternetReadFile

kernel32

lstrlenW
InterlockedDecrement
InterlockedIncrement
RaiseException
EnterCriticalSection
LeaveCriticalSection
GetLastError
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetCurrentThreadId
GetLocalTime
lstrcmpiW
DebugBreak
OutputDebugStringW
lstrlenA
CloseHandle
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleFileNameW
MoveFileExW
GetModuleHandleW
GetTempFileNameW
GetTempPathW
Sleep
LoadLibraryW
CreateMutexW
CreateFileW
WriteConsoleW
SetFilePointer
GetProcAddress
GetVersion
SetEndOfFile
GetProcessHeap
ReadFile
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetCurrentProcessId
QueryPerformanceCounter
FlushFileBuffers
SetStdHandle
LCMapStringW
FreeEnvironmentStringsW
GetConsoleMode
GetConsoleCP
HeapReAlloc
GetTickCount
DeleteFileW
WideCharToMultiByte
LocalFree
EncodePointer
DecodePointer
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
GetCommandLineW
HeapSetInformation
GetStartupInfoW
RtlUnwind
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapSize
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetStringTypeW
HeapCreate
WriteFile
GetStdHandle

user32

DestroyWindow
wvsprintfW
LoadStringW
DefWindowProcW
CharNextW

advapi32

RegEnumKeyExW
RegCloseKey
RegQueryInfoKeyW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoUninitialize
CoInitialize
CoCreateInstance

oleaut32

SysFreeString
SysAllocString
VariantClear
VarUI4FromStr

comctl32

InitCommonControlsEx

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac75b7a599fe34743c799799663cccdc

Headers

DLL Characteristics

File Characteristics

Imports

wininet

kernel32

user32

advapi32

ole32

oleaut32

comctl32

Sections

.text Size: 72KB - Virtual size: 72KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 7KB - Virtual size: 6KB

.text
Size: 72KB - Virtual size: 72KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 7KB - Virtual size: 6KB