6621ad109d0a2275f2e8fdbb2089212c726e12c5b0a703ff9e6a28b029b91403

Sharing

Copy URL Twitter E-mail

General

Target

6621ad109d0a2275f2e8fdbb2089212c726e12c5b0a703ff9e6a28b029b91403
Size

369KB
MD5

1abb95a934341492524ec0e6efbe4520
SHA1

4addca24265389a8f4e2cc16057091f85733f1bc
SHA256

6621ad109d0a2275f2e8fdbb2089212c726e12c5b0a703ff9e6a28b029b91403
SHA512

8e38991c3cb632e271a656f9145307776b215d7763dc0f281db57288f7ca337cf2ec6b0f653e515c36d1d9a4526784559e168d23c0fa24e06500f750e90d3468
SSDEEP

6144:/s2W1fP41l3uWBpaMU/sEOSdFoWby3/XwpbCSRk/SIpybzcdMxiElUJ:/nAP4b3hBpahoKFotIpbli61iv

Score

N/A

Malware Config

Signatures

Files

6621ad109d0a2275f2e8fdbb2089212c726e12c5b0a703ff9e6a28b029b91403
.exe windows x86

18f8b3c6dc71fafeeb7f4de62d2ee23d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExpandEnvironmentStringsW
CreateEventW
GetComputerNameW
CreateMutexW
WaitForSingleObject
GetModuleFileNameW
lstrlenW
GetSystemTime
ResetEvent
GetFileSize
GetFileTime
SearchPathW
CreateThread
FreeLibrary
GetProcAddress
LoadLibraryExW
SetErrorMode
lstrcpynW
GetModuleHandleW
DisableThreadLibraryCalls
WideCharToMultiByte
CreateFileW
RaiseException
MultiByteToWideChar
lstrlenA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
HeapSize
HeapReAlloc
VirtualAlloc
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetSystemInfo
CreateFileMappingW
MapViewOfFile
SetEvent
GetSystemDirectoryW
GetPrivateProfileIntW
GetSystemWindowsDirectoryW
GetUserDefaultUILanguage
InterlockedDecrement
InterlockedIncrement
ReleaseMutex
CloseHandle
UnmapViewOfFile
Sleep
InterlockedCompareExchange
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InterlockedExchange
GetCommandLineA
GetLocaleInfoA
VirtualProtect
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetLastError
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetVersionExA
VirtualQuery
ExitProcess
WriteFile
GetStdHandle

user32

ReleaseDC
LoadCursorW
RegisterClassW
SetTimer
KillTimer
GetDC
InvalidateRect
IsWindowVisible
IsWindow
UpdateWindow
DestroyWindow
SetWindowPos
EndPaint
BeginPaint
DefWindowProcW
GetSysColor
CreateWindowExW

advapi32

RevertToSelf
SetThreadToken
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
DeregisterEventSource
RegOpenKeyExW
ReportEventW
RegisterEventSourceW

gdi32

BitBlt
GetObjectW
GetDeviceCaps
SetStretchBltMode
StretchDIBits
CreatePalette
DeleteObject
GetPaletteEntries
CreateCompatibleDC
CreateDIBSection
RealizePalette
GetSystemPaletteEntries
SelectObject
SelectPalette
GetNearestPaletteIndex
DeleteDC

ole32

CoCreateInstance
CoFreeUnusedLibraries

rpcrt4

RpcBindingFree
RpcRevertToSelf
RpcImpersonateClient
RpcRaiseException

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 296KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18f8b3c6dc71fafeeb7f4de62d2ee23d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

rpcrt4

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 296KB - Virtual size: 588KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 296KB - Virtual size: 588KB

.rsrc
Size: 1KB - Virtual size: 1KB