8833e6d9ea7696d8ec155b56a1af0c55a7f40aca2b8b182d9c14c6c85300ae7a

Sharing

Copy URL

Twitter E-mail

General

Target

8833e6d9ea7696d8ec155b56a1af0c55a7f40aca2b8b182d9c14c6c85300ae7a
Size

202KB
MD5

0bf9937b61222aa9c30cb46f981940d7
SHA1

18f402da82672e67f60ae9a9d698da5ae4057334
SHA256

8833e6d9ea7696d8ec155b56a1af0c55a7f40aca2b8b182d9c14c6c85300ae7a
SHA512

1616dd688c78e4905a859080128a6a7df1d5628c1176a7a34f829131b03317ba8318bf116b176534bb3023b4be5af6e0e79dc7f9c252785bc1269a117fcd618b
SSDEEP

3072:K5KNIEz67YVPneURf6RQFkgf8cqYjCXnOVHyzuLs8DJSzfU8tFP:K5LsoURkWjC3OVWYs8ufxFP

Score

N/A

Malware Config

Signatures

Files

8833e6d9ea7696d8ec155b56a1af0c55a7f40aca2b8b182d9c14c6c85300ae7a
.exe windows x86

043132cc5076527b31677cb0745dee65

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

floor
_amsg_exit
_initterm
_XcptFilter
_onexit
_lock
__dllonexit
_unlock
memcpy
memset
iswspace
wcschr
ceil
__CxxFrameHandler
realloc
_purecall
malloc
free

kernel32

ReleaseSemaphore
GetLastError
VirtualAlloc
EnterCriticalSection
CreateSemaphoreW
LeaveCriticalSection
GetSystemInfo
VirtualProtect
GetCurrentThreadId
CloseHandle
HeapAlloc
HeapFree
CreateIoCompletionPort
CreateThread
WaitForMultipleObjects
PostQueuedCompletionStatus
GetQueuedCompletionStatus
SetEvent
QueueUserAPC
ExitThread
ResetEvent
FreeLibrary
LoadLibraryW
GetProcAddress
GetCurrentDirectoryW
GetProcessHeap
GetVersion
RtlUnwind
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetVersionExW
GetCurrentProcessId
GetSystemTimeAsFileTime
IsBadCodePtr
IsBadReadPtr
GetCurrentThread
GetModuleHandleW
GetCurrentProcess
VirtualQuery
DeleteCriticalSection
DisableThreadLibraryCalls
IsBadWritePtr
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
CreateEventW
WaitForSingleObject
GetTickCount
VirtualAllocEx

ole32

CreateFileMoniker
CreateBindCtx
CLSIDFromString
CoCreateInstance
CLSIDFromProgID
CoUninitialize
CoInitialize
CoCreateFreeThreadedMarshaler
CoTaskMemAlloc
CoTaskMemFree

user32

SetRect
GetDC
ReleaseDC
IsCharAlphaW
GetDesktopWindow
IntersectRect

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

gdi32

DeleteObject
CreateBrushIndirect
DeleteDC
SetMapMode
GetPaletteEntries
GetKerningPairsW
GetGlyphOutlineW
GetTextMetricsW
CreateCompatibleDC
GetObjectW
CreateFontIndirectW
FillPath
StrokePath
StrokeAndFillPath
SetPolyFillMode
BitBlt
SelectObject
ExtCreatePen
EndPath
PolyBezierTo
LineTo
MoveToEx
BeginPath

shlwapi

StrCmpIW
StrCmpNIW
PathFileExistsA
StrCatW
PathMakePrettyA
SHOpenRegStreamA
PathParseIconLocationA
StrIsIntlEqualW
PathIsSameRootA
UrlCompareA
SHRegDeleteUSValueA
PathIsUNCServerShareA
PathFileExistsW
PathIsLFNFileSpecW
AssocQueryKeyA
SHRegWriteUSValueW
SHDeleteValueA
SHStrDupA
SHDeleteOrphanKeyA
PathUndecorateA
PathIsNetworkPathW
StrCSpnW
SHRegEnumUSKeyA
PathUnquoteSpacesW
PathStripToRootA

cmutil

CmBuildFullPathFromRelativeW
CmAtolW
CmBuildFullPathFromRelativeA
CmLoadImageW
CmRealloc
CmLoadIconW

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 154KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 21KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

043132cc5076527b31677cb0745dee65

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

user32

advapi32

gdi32

shlwapi

cmutil

Sections

.text Size: 14KB - Virtual size: 13KB

.data Size: 154KB - Virtual size: 331KB

.bss Size: 21KB - Virtual size: 2.1MB

.rdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 13KB

.data
Size: 154KB - Virtual size: 331KB

.bss
Size: 21KB - Virtual size: 2.1MB

.rdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 1KB