5f6aa529985b9e2363d2459cec0bdd852747ede0290a5de13af8e11e0d5c71e5

Sharing

Copy URL

Twitter E-mail

General

Target

5f6aa529985b9e2363d2459cec0bdd852747ede0290a5de13af8e11e0d5c71e5
Size

177KB
MD5

0e4bfd84bc187c0726dc6b2b5e45cff3
SHA1

2e7ff63acfa7e2f3f8d5d5b3e678e4f4c4149707
SHA256

5f6aa529985b9e2363d2459cec0bdd852747ede0290a5de13af8e11e0d5c71e5
SHA512

45494cb43bee6b015222bf75b5e41d68b9ef386260dfe21c249ebffcd903f1c326cc9c4f2373bcc0b23d2ee36fe6fc4a56f07d7aa6082740a15c26b007af82d9
SSDEEP

3072:fzGj8bCyR9RotCKNllacQTGLY5tEWhiHAZapLC4sYXJV4T1tIO0tuWcbbS3Z0nl:b7CyvUNllEGLY5CWhiEakYXJV4TcZuWO

Score

N/A

Malware Config

Signatures

Files

5f6aa529985b9e2363d2459cec0bdd852747ede0290a5de13af8e11e0d5c71e5
.exe windows x86

4185cc852d78736339423c062bf4e512

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
EnumChildWindows
SetWindowPos
GetDlgItemTextA
SetWindowPlacement
SetSysColors
BringWindowToTop
AnyPopup
GetNextDlgGroupItem
ChildWindowFromPoint
CascadeWindows
CreateDialogParamA
GetLastActivePopup

gdi32

ExtEscape
FrameRgn
GetBrushOrgEx
GdiSetBatchLimit
CopyMetaFileA
CreateEllipticRgn
GetBitmapDimensionEx
DeleteEnhMetaFile
ExtSelectClipRgn
CombineRgn
GetBkMode
Arc
ExcludeClipRect
FillRgn
CreateDiscardableBitmap

kernel32

LeaveCriticalSection
GetCPInfo
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetACP
GetUserDefaultLCID
GetSystemDefaultLCID
GetNumberFormatA
WaitForMultipleObjects
GlobalMemoryStatus
LocalHandle
LocalLock
HeapFree
VirtualLock
VirtualQuery
GetProcAddress
CopyFileA
VirtualAllocEx
EnterCriticalSection
InitializeCriticalSection
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA

secur32

DeleteSecurityContext
VerifySignature
DecryptMessage
FreeCredentialsHandle
AcceptSecurityContext
MakeSignature
CompleteAuthToken
ExportSecurityContext
EncryptMessage
ApplyControlToken

netapi32

NetUserChangePassword
NetFileEnum
NetGroupAdd
NetConfigSet
NetConfigGetAll
Netbios
NetErrorLogClear
NetGetDCName
NetGetAnyDCName
NetConnectionEnum
NetGroupAddUser

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jpcn
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4185cc852d78736339423c062bf4e512

Headers

File Characteristics

Imports

user32

gdi32

kernel32

secur32

netapi32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 81KB

.jpcn Size: 332KB - Virtual size: 331KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 81KB

.jpcn
Size: 332KB - Virtual size: 331KB

.rsrc
Size: 3KB - Virtual size: 2KB