8d4dce0902513540415f33b58b7610d83e5dfd8ef299abc5cd6468f3d84136da

Sharing

Copy URL Twitter E-mail

General

Target

8d4dce0902513540415f33b58b7610d83e5dfd8ef299abc5cd6468f3d84136da
Size

244KB
MD5

1b1909427a6339f92238572a49a4b4c0
SHA1

db70720ed17830d53767f6d4ab044c18b12f4fcd
SHA256

8d4dce0902513540415f33b58b7610d83e5dfd8ef299abc5cd6468f3d84136da
SHA512

a5d50e025401c505b6106dd4be440844545d6ba02988a936ad1894da1ce726f033c37dae06a3aca202340c7aacebc138fea2cf326cca2cb36fa220307846fdbb
SSDEEP

3072:W6pvzX9Cy6Z/nC1vffZE12OGi45SadTqusrcRkxcOxNCf9ip2ZoLHvf/YQpXISNO:WeztOZ/ivfNi45LBsr5VNwrZotFN6D

Score

N/A

Malware Config

Signatures

Files

8d4dce0902513540415f33b58b7610d83e5dfd8ef299abc5cd6468f3d84136da
.exe windows x86

b7b7a172068c89f347bf44ddbbcd29e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
HeapDestroy
TlsSetValue
GetVersionExA
RaiseException
GetCurrentProcess
GetCommandLineW
GetFileSize
InitializeCriticalSectionAndSpinCount
GetLastError
LoadLibraryW
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetStringTypeW
GetStringTypeA
LCMapStringW
GetStdHandle
LoadLibraryA
GetProcAddress
IsBadWritePtr
VirtualAlloc
HeapAlloc
GetOEMCP
FatalAppExitA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
RtlUnwind
HeapFree
VirtualFree
GetEnvironmentVariableA
GetCurrentThread
SetLastError
DeleteCriticalSection
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
ExitProcess
GetVersion
RegisterWaitForSingleObject
GetModuleHandleA
QueryPerformanceCounter
GetProcessHeap
MultiByteToWideChar
SetErrorMode
SetEvent
TerminateProcess
LoadResource
FreeEnvironmentStringsW
GetCurrentProcessId
FlushFileBuffers
GetStartupInfoA
TlsFree
GetFileAttributesW
VirtualAllocEx
GetSystemTimeAsFileTime
UnhandledExceptionFilter
WideCharToMultiByte
GetModuleFileNameW
HeapReAlloc
InterlockedDecrement
WriteFile
TlsAlloc
SetUnhandledExceptionFilter
InterlockedIncrement
FindFirstFileW
HeapCreate
GetACP
CreateThread
GetTickCount
GetCommandLineA
CreateFileW
HeapSize
GetFileType
Sleep
SetEndOfFile
GetCurrentThreadId
GetCPInfo
FreeLibrary
GetFileSizeEx
TlsGetValue
GetModuleHandleW
lstrlenW
LCMapStringA
SetEnvironmentVariableA

user32

GetWindowTextLengthW
MessageBoxW
BeginPaint
EndPaint
SetTimer
GetCursorPos
GetWindowTextLengthA
LoadStringA
GetParent
ReleaseDC
GetDlgItemInt
SetWindowPos
SetForegroundWindow
LoadStringW
MessageBoxA
GetDlgItem
GetWindowTextA
EnableWindow
TranslateMessage
GetDlgItemTextA
EndDialog
GetDlgItemTextW
IsWindowUnicode
SendMessageA
GetWindowTextW
GetWindowDC
PostQuitMessage
GetWindowPlacement
GetClientRect
GetSystemMetrics
DestroyWindow
GetWindowLongA
GetWindowThreadProcessId
ShowWindowAsync
GetDCEx
GetWindowLongW
GetSysColorBrush
ShowWindow
IsWindowEnabled
IsWindowVisible
InvalidateRect
GetMenuItemCount
SetCursor
SetRectEmpty
GetDesktopWindow
GetWindowRect

gdi32

GetObjectW
CreateRectRgnIndirect
BitBlt
CreateSolidBrush
ExtTextOutW
CreateCompatibleBitmap
CreateBitmap
PatBlt
SaveDC
GetClipBox
RestoreDC
StretchBlt
CreateFontIndirectA
SetViewportOrgEx
SelectPalette
CreatePenIndirect
CreateFontIndirectW
ExtSelectClipRgn
GetStretchBltMode
RealizePalette
CreatePalette
ExtCreatePen
SetWindowOrgEx
GetObjectA
ExtTextOutA
CreateDIBSection
CreateDIBitmap
MoveToEx
LineTo
RectVisible
Rectangle
SetMapMode
GetTextExtentPoint32W
SelectClipRgn
SetBkColor
CreateCompatibleDC
GetStockObject
DeleteDC
SetTextColor
SetStretchBltMode
GetDeviceCaps
SelectObject
DeleteObject
SetBkMode

ole32

CoInitializeSecurity
RegisterDragDrop
CoQueryProxyBlanket
StringFromCLSID
CoDisconnectObject
OleRun
CoInitialize
ReleaseStgMedium
OleFlushClipboard
CoCreateGuid
CreateStreamOnHGlobal
CoRegisterMessageFilter
CoGetClassObject
CoUninitialize
CoLockObjectExternal
CLSIDFromProgID
CreateBindCtx
CoSetProxyBlanket
CoCreateInstance
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
CLSIDFromString
CoRevokeClassObject
CoTaskMemFree
GetRunningObjectTable
CoFreeUnusedLibraries
RevokeDragDrop
OleInitialize
OleRegGetUserType
OleUninitialize
CreateILockBytesOnHGlobal

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7b7a172068c89f347bf44ddbbcd29e7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 160KB - Virtual size: 273KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 160KB - Virtual size: 273KB

.rsrc
Size: 16KB - Virtual size: 12KB