8b698c42572a5867cb0ed13313d1e4bef40e056da2146ce5e1aecd64131b75f9

Sharing

Copy URL

Twitter E-mail

General

Target

8b698c42572a5867cb0ed13313d1e4bef40e056da2146ce5e1aecd64131b75f9
Size

128KB
MD5

dc4ea908500bebe4eab1cfabd488aeb6
SHA1

3bfb30f31f81dc174b41bc45b818c06680ec55b8
SHA256

8b698c42572a5867cb0ed13313d1e4bef40e056da2146ce5e1aecd64131b75f9
SHA512

a4643ab340afbecd3334e4b4a23a4b27d178b0d8fd9aebdecfb84446ec0d17dea57608e09eda84bf6b9b5f3591c266663a980617e91b1a09c736350f80069b46
SSDEEP

1536:lRLzA58DUoJc82QWHDGOXzkkosRx4q5pTNF46fyNw6ciy73So:llynoJcgWHSY5Rx4qvTNF4UN6ciK3So

Score

N/A

Malware Config

Signatures

Files

8b698c42572a5867cb0ed13313d1e4bef40e056da2146ce5e1aecd64131b75f9
.exe windows x86

68b35014a3fd1f4b42e76dd8a12f44a4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
HeapFree
GetProcessHeap
lstrcmpA
lstrlenA
MultiByteToWideChar
GetStartupInfoW
GetModuleHandleA
GetLastError
SetLastError
CreateMutexA
VirtualFree
VirtualAlloc
WaitForSingleObject
GetCommandLineA
lstrcatA
GetModuleFileNameA
ReleaseMutex
CloseHandle
GetVolumeInformationA
GetProcAddress
FindFirstVolumeA
GetVersionExA
FindResourceExW
FindResourceW
LoadResource
GetCurrentProcess
WideCharToMultiByte
SizeofResource
LockResource
CreateFileW
WriteConsoleW
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
LCMapStringW
LoadLibraryW
RtlUnwind
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
HeapCreate
ExitProcess
Sleep
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
FlushFileBuffers
GetCPInfo
GetModuleFileNameW
GetStdHandle
WriteFile
IsProcessorFeaturePresent
IsDebuggerPresent
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
HeapDestroy
HeapReAlloc
HeapSize
DecodePointer
EncodePointer
VirtualProtect
GetModuleHandleW
GetSystemInfo
VirtualQuery
HeapSetInformation
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

TranslateMessage
DefWindowProcA
ShowWindow
DispatchMessageA
LoadCursorA
PostQuitMessage
RegisterClassExA
GetMessageA
GetSystemMetrics
SetWindowPos
CreateWindowExA
GetClientRect
GetWindowLongA
UpdateWindow
SetWindowLongA
LoadIconA
SetTimer
GetWindowRect
KillTimer

ole32

OleUninitialize
CoCreateInstance
OleInitialize

oleaut32

SysAllocStringLen
VariantClear
SysAllocString
SysFreeString

shlwapi

PathQuoteSpacesA
StrStrIA
StrStrA

urlmon

CoInternetSetFeatureEnabled

wininet

InternetCloseHandle
InternetOpenA
HttpSendRequestA
FindCloseUrlCache
InternetConnectA
InternetQueryDataAvailable
DeleteUrlCacheEntry
HttpOpenRequestA
FindNextUrlCacheEntryA
FindFirstUrlCacheEntryA

psapi

GetProcessMemoryInfo

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68b35014a3fd1f4b42e76dd8a12f44a4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

shlwapi

urlmon

wininet

psapi

Sections

.text Size: 85KB - Virtual size: 84KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: 4KB - Virtual size: 150KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 85KB - Virtual size: 84KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: 4KB - Virtual size: 150KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 9KB - Virtual size: 9KB