9bd3f9dce8b953b6fe015f03b0d97a8590a673e36495250deeb6013554f16701

Sharing

Copy URL

Twitter E-mail

General

Target

9bd3f9dce8b953b6fe015f03b0d97a8590a673e36495250deeb6013554f16701
Size

5.1MB
MD5

99284e39734592a9fd2ba53b86dc751a
SHA1

d96a97d21d8f04a63a3a13cbc45ee9c8c4171c26
SHA256

9bd3f9dce8b953b6fe015f03b0d97a8590a673e36495250deeb6013554f16701
SHA512

b5e64a45af8cbe27af6c408a6660fd7266983636d97da118a713b396a7956935b052111776f34ce61cba816c4b5d8a81e69be39ed3e5e47ac7fac39df7fac169
SSDEEP

98304:DaernB0vrbzzzzzkzzzzzvnOwV0WiLDR7I/SEkQuIAeOgJ6mC7QlBck5uo280MBj:DaejB2bzzzzzkzzzzzPOwVwNI6EkQur8

Score

N/A

Malware Config

Signatures

Files

9bd3f9dce8b953b6fe015f03b0d97a8590a673e36495250deeb6013554f16701
.exe windows x86

f79fdd2b42a1052a2ddbd3b1cf24bc90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

user32

FindWindowA
CharNextA
LoadStringA
SetWindowTextA
GetDlgItem
MessageBoxA
IsChild
GetDesktopWindow
GetLastActivePopup
GetWindowThreadProcessId
GetForegroundWindow
IsWindow
GetWindowInfo
CharUpperW
CharUpperA
PostMessageA
ShowWindow
EnableWindow
EnableMenuItem
GetMenuItemID
GetMenuItemCount
GetSystemMenu
SetTimer
EndDialog
KillTimer
IsWindowVisible
DialogBoxParamA
wsprintfA
SendMessageA

gdi32

CreateFontA
DeleteObject

oleaut32

VarBstrCat
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElement
SafeArrayDestroy
SysFreeString
VariantClear
SysAllocString
SysAllocStringLen
VariantInit

advapi32

RegCloseKey
RegCreateKeyA
RegSetValueExA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA

shlwapi

PathAppendA
PathFindFileNameA
StrStrIA
PathAppendW
PathFindFileNameW
StrStrIW
PathRemoveExtensionA

kernel32

FlushFileBuffers
SetStdHandle
QueryPerformanceCounter
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
IsBadCodePtr
IsBadReadPtr
GetStringTypeA
InterlockedIncrement
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
LCMapStringW
LCMapStringA
TerminateProcess
GetLocaleInfoW
GetStringTypeW
ExitProcess
IsBadWritePtr
HeapCreate
HeapDestroy
TlsGetValue
InterlockedDecrement
GetProcessHeap
DeviceIoControl
LocalFree
GetFileType
TlsSetValue
TlsFree
TlsAlloc
GetCPInfo
GetOEMCP
ExitThread
HeapReAlloc
lstrlenA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
GetPrivateProfileIntA
GetModuleFileNameA
SetUnhandledExceptionFilter
CloseHandle
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
SuspendThread
GetProcAddress
GetModuleHandleA
RaiseException
CreateFileA
FreeLibrary
LoadLibraryA
GetLocalTime
MultiByteToWideChar
WideCharToMultiByte
GetLastError
InitializeCriticalSection
DeleteCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
lstrlenW
GetTempPathA
CreateFileW
GetTempPathW
VirtualProtect
CreateDirectoryA
lstrcpynA
GetSystemTime
GetTickCount
GetFileAttributesA
WriteFile
ReadFile
SetFilePointer
GetFileSize
WaitForSingleObject
lstrcatA
GetStartupInfoA
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
FindFirstFileA
GetPrivateProfileStringA
MoveFileA
GetFileSizeEx
OutputDebugStringA
Sleep
GetPrivateProfileSectionA
GetDiskFreeSpaceA
lstrcpyA
ReleaseMutex
TerminateThread
ResumeThread
CreateThread
GetCommandLineA
CreateMutexA
GetStdHandle
EnterCriticalSection
LeaveCriticalSection
WaitForMultipleObjects
VirtualAlloc
VirtualFree
CreateEventA
SetEvent
ResetEvent
SetFileTime
SetLastError
SetFileAttributesW
CreateDirectoryW
DeleteFileW
FindFirstFileW
SetEndOfFile
GetSystemInfo
RtlUnwind
HeapAlloc
HeapFree
VirtualQuery
GetSystemTimeAsFileTime

wininet

HttpOpenRequestA
HttpSendRequestA
HttpQueryInfoA
InternetReadFile
InternetCrackUrlA
InternetSetOptionA
InternetOpenA
InternetConnectA
InternetAttemptConnect
InternetCloseHandle

rpcrt4

UuidCreate

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

ole32

CoUninitialize
CoInitializeSecurity
CoInitialize
CoCreateInstance

Sections

.text
Size: 180KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 796KB - Virtual size: 792KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f79fdd2b42a1052a2ddbd3b1cf24bc90

Headers

File Characteristics

Imports

comctl32

user32

gdi32

oleaut32

advapi32

shlwapi

kernel32

wininet

rpcrt4

version

ole32

Sections

.text Size: 180KB - Virtual size: 178KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 12KB - Virtual size: 1.0MB

.rsrc Size: 796KB - Virtual size: 792KB

.text
Size: 180KB - Virtual size: 178KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 12KB - Virtual size: 1.0MB

.rsrc
Size: 796KB - Virtual size: 792KB