92b5cef9c175aba69f2e8a5ce18dfe30981edc264ed6e62da1f3302b6b533dbc

Sharing

Copy URL Twitter E-mail

General

Target

92b5cef9c175aba69f2e8a5ce18dfe30981edc264ed6e62da1f3302b6b533dbc
Size

824KB
MD5

3badea2e6fa22ce8726d3040fa40d4ff
SHA1

369b623292c3e4d6fabcb971e0117c7a7259d1f8
SHA256

92b5cef9c175aba69f2e8a5ce18dfe30981edc264ed6e62da1f3302b6b533dbc
SHA512

353935c93be960a673f85cbcd18b391f01c4b2b781d3118edb9aec4823315db49bb896d6b54edd3be0d26bed7f26a9281e950d3fc37ef5a57fc3258a9f927db9
SSDEEP

24576:awem1n6oFRkJ59PZa9mgwjwGml7WjzZOp6eGBB:aEnBQXUvhBl7WfZOpjGBB

Score

N/A

Malware Config

Signatures

Files

92b5cef9c175aba69f2e8a5ce18dfe30981edc264ed6e62da1f3302b6b533dbc
.exe windows x86

55e6d2acff1b6d90a22c247e6ebef1cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
RemoveDirectoryA
OpenFileMappingW
GetComputerNameW
OpenSemaphoreA
WriteTapemark
SetConsoleIcon
GetModuleHandleA
GetTempFileNameW
IsBadStringPtrA
CreateFileMappingW
GlobalReAlloc
GetFileInformationByHandle
SearchPathW
GetCommModemStatus
OutputDebugStringW
WritePrivateProfileSectionW
GetCommMask
GetOEMCP
LoadLibraryW
GetExpandedNameA
OpenSemaphoreW
GetWriteWatch
DosPathToSessionPathA
BuildCommDCBA
SuspendThread
Beep
CreateDirectoryExA
SetErrorMode
ExpungeConsoleCommandHistoryA

msoert2

HrBSTRToLPSZ
FIsEmptyA
FIsValidFileNameCharA
GetHtmlCharset
FBuildTempPathW
GetDllMajorVersion
FIsValidFileNameCharW
PszFromANSIStreamA
PVGetCertificateParam
CchFileTimeToDateTimeW
OpenFileStream
CleanupFileNameInPlaceA
HrGetCertKeyUsage
CreateStreamOnHFile
_MSG
strtrim
HrLPSZToBSTR
DeleteTempFileOnShutdownEx
WriteStreamToFileHandle
FIsSpaceA
OpenFileStreamWithFlagsW
PszDupA
PszScanToCharA
UlStripWhitespaceW
CchFileTimeToDateTimeSz

user32

GetClassInfoExW
ClientToScreen
MessageBoxW
HiliteMenuItem
LoadStringW
LoadCursorA
LoadCursorW
RealGetWindowClassW
CreateDialogParamA
GetKBCodePage
RegisterClassExA
DdeAbandonTransaction
FindWindowA
TrackPopupMenu
UserRegisterWowHandlers
UnhookWinEvent
SetWindowRgn
DdeEnableCallback
ScrollWindow
AnimateWindow
GetMenuItemCount
IMPQueryIMEW
KillTimer
DestroyCursor
IMPGetIMEW
CallWindowProcW
GetUserObjectSecurity
GetDC
CreateWindowStationW
EnumDesktopsW

ntdll

RtlImageNtHeader
RtlFindNextForwardRunClear
ZwCreateTimer
RtlLargeIntegerAdd
NtQueryPerformanceCounter
LdrQueryProcessModuleInformation
RtlSetThreadIsCritical
DbgPrintEx

duser

GetGadgetCenterPoint
PeekMessageExW
FireGadgetMessages
SetGadgetProperty
AttachWndProcW
GetGadgetScale
UtilSetBackground
SetGadgetFillI
GetStdColorName
DUserGetGutsData
DUserStopAnimation
SetGadgetOrder
DUserInstanceOf
GetGadgetRootInfo
GetStdColorBrushI
IsGadgetParentChainStyle

clb

ClbWndProc
ClbSetColumnWidths
ClbAddData
ClbStyleW
CustomControlInfoW

Sections

.text
Size: 374KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 181KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55e6d2acff1b6d90a22c247e6ebef1cb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msoert2

user32

ntdll

duser

clb

Sections

.text Size: 374KB - Virtual size: 374KB

.rdata Size: 114KB - Virtual size: 113KB

.data Size: 181KB - Virtual size: 1.6MB

.rsrc Size: 153KB - Virtual size: 152KB

.reloc Size: 1024B - Virtual size: 832B

.text
Size: 374KB - Virtual size: 374KB

.rdata
Size: 114KB - Virtual size: 113KB

.data
Size: 181KB - Virtual size: 1.6MB

.rsrc
Size: 153KB - Virtual size: 152KB

.reloc
Size: 1024B - Virtual size: 832B