6c23f96905c07659bcb847750d2030fe427c8551e77d89524406ae4d606b5e90

Sharing

Copy URL

Twitter E-mail

General

Target

6c23f96905c07659bcb847750d2030fe427c8551e77d89524406ae4d606b5e90
Size

351KB
MD5

1046c0b187947d4d8f174e606deaa56e
SHA1

2157147ff0f7d496096075d7d853f20b84b8a6ee
SHA256

6c23f96905c07659bcb847750d2030fe427c8551e77d89524406ae4d606b5e90
SHA512

b79313d239257a11f9eac6bf5ed5ceb117fe252e2edea121696282a1b6f6e74445594660f96b82b0539bd40f702b4346b3bdd95a15b7abe081b91f10ad2e101d
SSDEEP

6144:eB6qCkeb0IFrdl01FoTkqr0KwO9n+Szfx2hImFAt1lRosd0JrUmmSzvYlXdHJQwE:265X008F2lr0jO9nVAjit1lR9F6z8awE

Score

N/A

Malware Config

Signatures

Files

6c23f96905c07659bcb847750d2030fe427c8551e77d89524406ae4d606b5e90
.exe windows x86

8847874012f828ea8cd9f8ad02e263e2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetConsoleCursorInfo
GlobalFindAtomW
GetVersionExA
TerminateProcess
CancelDeviceWakeupRequest
DeleteFileA
SetCurrentDirectoryW
DeleteFiber
GetDateFormatW
lstrcmpiA
MultiByteToWideChar
VirtualProtect
Heap32Next
DebugActiveProcess
CreateDirectoryA
SetEnvironmentVariableA
ResetEvent
GetLastError
FindResourceExW
SetStdHandle
VerLanguageNameW
FreeEnvironmentStringsA
FileTimeToSystemTime
GetFileType
VirtualQuery
lstrcpyA
GlobalFindAtomA
CommConfigDialogA
WaitForSingleObjectEx
InterlockedCompareExchange
CreateWaitableTimerA
GetProfileIntW
UnlockFile
SetWaitableTimer
GetStartupInfoA
WriteConsoleOutputAttribute
InitializeCriticalSection
FillConsoleOutputCharacterA
CloseHandle
VirtualUnlock
CopyFileW
Heap32First
BuildCommDCBAndTimeoutsA
CreateDirectoryW
WaitForMultipleObjectsEx
lstrlenA
GetCPInfoExA
ReadConsoleInputW
GetCommandLineW
GetTimeZoneInformation
HeapReAlloc
MapViewOfFile
CreateEventW
SetVolumeLabelA
IsBadHugeWritePtr
FlushInstructionCache
GlobalFlags
ReleaseSemaphore
GetTickCount
IsBadReadPtr
GetCurrencyFormatA
CancelWaitableTimer
GetLogicalDriveStringsW
PrepareTape
Thread32Next
ScrollConsoleScreenBufferW
SetDefaultCommConfigW

user32

CharToOemW
SetScrollPos
GetForegroundWindow
DefFrameProcA
GetKeyboardLayoutNameA
MapVirtualKeyExA
GetWindowRect
IsCharAlphaNumericW
MenuItemFromPoint
SetWindowsHookA
FindWindowW
DrawEdge
ToUnicode
CharNextW
InsertMenuItemW
CopyIcon
TabbedTextOutA
SetLastErrorEx
UnionRect
CheckMenuItem
SubtractRect
RegisterClassW
DrawAnimatedRects
wsprintfA
DialogBoxIndirectParamW
DlgDirSelectComboBoxExA
GetDialogBaseUnits
EnumPropsExA
GetMenuItemID
FindWindowA
SetCaretBlinkTime
InsertMenuItemA
GetCaretBlinkTime
DrawIcon
GetKeyboardLayout
InvertRect
OpenDesktopW
ScreenToClient
SetMenuDefaultItem
OemToCharBuffW
MapVirtualKeyW
ArrangeIconicWindows
InvalidateRect
ShowCursor
LoadMenuIndirectA
TranslateMDISysAccel
CreateDialogParamA
SendMessageA

gdi32

CreateMetaFileW
SetViewportOrgEx
SelectPalette
CloseFigure
DPtoLP
GetPaletteEntries
SetICMMode
FloodFill
CancelDC
GetCharABCWidthsA
SetTextJustification
CreateMetaFileA
Ellipse
GetCharABCWidthsFloatA
GetMiterLimit
GetClipRgn
AbortPath
GetNearestColor
ArcTo
GetWinMetaFileBits
SetWorldTransform
SetICMProfileW
CreateScalableFontResourceA
EnumICMProfilesA
CreateFontIndirectW
StretchBlt
GetEnhMetaFileDescriptionW
GetEnhMetaFileDescriptionA
GetTextExtentPoint32W
ExtSelectClipRgn
CreateICA
CheckColorsInGamut
ScaleWindowExtEx
MaskBlt
PathToRegion
GetICMProfileA
SelectObject
InvertRgn
GetLogColorSpaceA
DeleteMetaFile
GetPixelFormat

comdlg32

GetFileTitleW

advapi32

CryptGetHashParam
RegisterEventSourceA
CryptAcquireContextA
PrivilegedServiceAuditAlarmA
GetAuditedPermissionsFromAclA
OpenEventLogA
RegOpenKeyExA
InitiateSystemShutdownA
GetSidLengthRequired
GetKernelObjectSecurity
DuplicateToken
LookupAccountSidA
IsValidSid
CryptGetKeyParam
RegFlushKey
RegGetKeySecurity
AreAnyAccessesGranted
GetSecurityDescriptorDacl
GetEffectiveRightsFromAclA
BuildSecurityDescriptorW
CryptCreateHash
CloseEventLog
SetAclInformation
CryptGetDefaultProviderA
InitiateSystemShutdownW
GetServiceDisplayNameA
SetSecurityDescriptorOwner
AdjustTokenPrivileges
GetFileSecurityA
GetSecurityDescriptorGroup
CryptSetProviderExA

shell32

SHGetFileInfoA
ExtractIconW
SHGetInstanceExplorer
SHGetDesktopFolder
SHLoadInProc
SHGetDataFromIDListA
FindExecutableW
ord179
SHQueryRecycleBinA
Shell_NotifyIconW

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 288KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

c2k.kact
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ezlv8et6
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8847874012f828ea8cd9f8ad02e263e2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

msvcrt

Sections

.text Size: 288KB - Virtual size: 292KB

.rdata Size: 6KB - Virtual size: 8KB

.data Size: 6KB - Virtual size: 8KB

c2k.kact Size: 45KB - Virtual size: 48KB

ezlv8et6 Size: 4KB - Virtual size: 4KB

.text
Size: 288KB - Virtual size: 292KB

.rdata
Size: 6KB - Virtual size: 8KB

.data
Size: 6KB - Virtual size: 8KB

c2k.kact
Size: 45KB - Virtual size: 48KB

ezlv8et6
Size: 4KB - Virtual size: 4KB