528b0bb6ac546958494e80708ba1c6a309cbc4ab785c0e2608edea2c64458ad1

Sharing

Copy URL Twitter E-mail

General

Target

528b0bb6ac546958494e80708ba1c6a309cbc4ab785c0e2608edea2c64458ad1
Size

218KB
MD5

3eca24f6c947f26761d605ef754d3925
SHA1

14626881f6f719b373a7f23034cf56f8f3b86d85
SHA256

528b0bb6ac546958494e80708ba1c6a309cbc4ab785c0e2608edea2c64458ad1
SHA512

13ea722456b30db186b4200663c7e8dcb7129c9c548322d96f8f0827d92e12a29e0e9ffe0f68262ac728edf66ec5ff3f760bbacc82a403113b4ef5dd80766bde
SSDEEP

3072:EBvRIxbjtN5+hO1qxXDODvyYIDseYgmkdLdRTGpVK5dMv:OGxOO1qxXDODvyYIDseYgmk/RUVK0

Score

N/A

Malware Config

Signatures

Files

528b0bb6ac546958494e80708ba1c6a309cbc4ab785c0e2608edea2c64458ad1
.exe windows x86

806d823699d84a3bef64eb4281972853

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
TlsAlloc
TlsFree
DeleteFileW
MoveFileW
GetWindowsDirectoryW
GetSystemDirectoryW
IsDBCSLeadByte
SetErrorMode
SizeofResource
LoadResource
LockResource
TlsSetValue
InterlockedExchangeAdd
GetFileSize
lstrcpyA
GetFullPathNameA
TlsGetValue
GetFileTime
SetFileTime
EnterCriticalSection
GetModuleFileNameA
GetProfileSectionW
GetProfileSectionA
CompareStringW
CreateFileW
CreateFileA
GetStringTypeExW
GetStringTypeExA
LocalReAlloc
GetACP
lstrcmpiW
MulDiv
GlobalHandle
GlobalSize
GlobalReAlloc
GlobalFlags
GlobalFree
GlobalAlloc
SetFilePointer
CloseHandle
WaitForSingleObject
ReadFile
IsBadWritePtr
FindAtomA
GetSystemDefaultLangID
DeleteCriticalSection
InitializeCriticalSection
lstrlenA
GetLocaleInfoW
IsBadReadPtr
LocalLock
WideCharToMultiByte
GetSystemDefaultLCID
LeaveCriticalSection
FindAtomW
GetProfileIntA
QueryPerformanceCounter
InterlockedExchange
UnhandledExceptionFilter
FindFirstFileW
GetFileAttributesW
LocalFree
VerSetConditionMask
VerifyVersionInfoW
MultiByteToWideChar
GetFileType
WriteConsoleW
SetLastError
GetConsoleOutputCP
GetLastError
lstrlenW
GetModuleHandleW
lstrcpynW
GetModuleFileNameW
GetModuleHandleA
GetVersion
GlobalLock
GlobalUnlock
FreeLibrary
LocalAlloc
GetExitCodeProcess
OutputDebugStringW
CreateDirectoryExW
RemoveDirectoryW
ExitThread
WriteFile

user32

GetSysColor
GetKeyState
PtInRect
GetWindowRect
ScreenToClient
GetCursorPos
DrawFocusRect
UpdateWindow
SetWindowPos
InvalidateRect
InflateRect
EndPaint
BeginPaint
MoveWindow
ClientToScreen
CreateWindowExA
ReleaseDC
GetDC
IsWindowUnicode
ActivateKeyboardLayout
CopyRect
InvertRect
ReleaseCapture
GetAsyncKeyState
SetCapture
TrackPopupMenu
RegisterClipboardFormatA
DestroyMenu
SetFocus
DestroyCaret
GetFocus
IsWindowVisible
SetScrollRange
SetScrollPos
HideCaret
GetDoubleClickTime
RegisterClassA
UnregisterClassW
CharUpperBuffW
CharLowerA
GetKeyboardLayoutList
GetKeyboardLayout
LoadCursorA
LoadBitmapW
LoadBitmapA
GetClassLongW
GetClassLongA
DefWindowProcW
DefWindowProcA
wvsprintfA
EnableScrollBar
ShowScrollBar
ShowCaret
CharUpperW
GetClipboardData
GetClipboardOwner
OpenClipboard
EmptyClipboard
CloseClipboard
SetClipboardData
IsClipboardFormatAvailable
GetCaretPos
GetCapture
IsChild
GetForegroundWindow
WindowFromPoint
SystemParametersInfoW
GetDesktopWindow
IsWindow
GetWindow
ScrollWindowEx
KillTimer
SetCaretPos
DialogBoxParamW
LoadStringW
WinHelpW
GetDlgItem
SetWindowLongW
GetWindowLongW
GetParent
EnableWindow
DrawFrameControl
SetCursor
DestroyWindow
UnregisterClassA
WindowFromDC
GetCursor

advapi32

DeregisterEventSource
RegQueryValueExA
RegEnumKeyExA
RegQueryValueExW
ReportEventA

ole32

ReleaseStgMedium

msvcrt

malloc
fgetwc
atol
sprintf
wcsncpy
wcslen
memmove
fwprintf
vswprintf
vfwprintf
free
fprintf

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

806d823699d84a3bef64eb4281972853

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcrt

Sections

.text Size: 36KB - Virtual size: 35KB

.idata Size: 8KB - Virtual size: 6KB

.rdata Size: 64KB - Virtual size: 60KB

.data Size: 84KB - Virtual size: 2.6MB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 36KB - Virtual size: 35KB

.idata
Size: 8KB - Virtual size: 6KB

.rdata
Size: 64KB - Virtual size: 60KB

.data
Size: 84KB - Virtual size: 2.6MB

.rsrc
Size: 20KB - Virtual size: 18KB