5771257431fa728fd9c7461588c10308d4a2dd9aeffcc8ffa18662f6b1ffbb14

Sharing

Copy URL

Twitter E-mail

General

Target

5771257431fa728fd9c7461588c10308d4a2dd9aeffcc8ffa18662f6b1ffbb14
Size

135KB
MD5

3107eeb8708622e3974a0c1ca6e74180
SHA1

f44a8141adcb07ad89d3485acfa3d6ffaa62fd0f
SHA256

5771257431fa728fd9c7461588c10308d4a2dd9aeffcc8ffa18662f6b1ffbb14
SHA512

8af567a67b0200c5b0b318ddda6e92b84d03bec05157ba2c395fb24208ea5543e1aa95061ab0dbc72c948fc8994dd0b2af08ea8709a1fb2d3adbb0f94b9f4981
SSDEEP

3072:SgU5jn9oMnKY9KsPz1EwIYc9S7hXufS1:Sg6jSMnnz1JYw

Score

N/A

Malware Config

Signatures

Files

5771257431fa728fd9c7461588c10308d4a2dd9aeffcc8ffa18662f6b1ffbb14
.exe windows x86

698295463cfd9aebfd5849570d408a06

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
EnterCriticalSection
FindFirstChangeNotificationW
LeaveCriticalSection
TlsAlloc
CreateThread
GetCurrentThread
WinExec
IsDebuggerPresent
InterlockedDecrement
CompareStringA
FreeLibrary
OpenEventW
InterlockedCompareExchange
GetStartupInfoA
IsValidCodePage
QueryPerformanceCounter
OutputDebugStringW
ExpandEnvironmentStringsA
GetSystemDirectoryW
SetConsoleCtrlHandler
GetCurrentThreadId
lstrlenA
FileTimeToSystemTime
VirtualQuery
lstrcmpW
HeapReAlloc
lstrcpynW
GetModuleHandleA
GetStringTypeA
GetEnvironmentStringsW
FlushInstructionCache
CreateFileA
RtlUnwind
GetVersionExW
GlobalAlloc
LockResource
GetWindowsDirectoryW
GetStringTypeW
LocalFree
GetPrivateProfileStringW
GetFileAttributesExW
GetOEMCP
GetConsoleCP
WriteConsoleW
InterlockedExchange
GetFileSize
InitializeCriticalSection
WaitForMultipleObjects
InitializeCriticalSectionAndSpinCount
TlsFree
ResetEvent
CloseHandle
Sleep
GetTempFileNameW
HeapDestroy
GetConsoleOutputCP
EnumSystemLocalesA
SystemTimeToTzSpecificLocalTime
HeapSize
GetStdHandle
GetConsoleMode
LoadLibraryExW
GetLastError
ExpandEnvironmentStringsW
VirtualAlloc
FormatMessageW
GetCPInfo
InterlockedIncrement
WritePrivateProfileSectionW
GetDateFormatW
GlobalSize
lstrcatW
MultiByteToWideChar
GetTimeFormatA
WriteConsoleA
lstrlenW
GetComputerNameW
GetCurrentProcessId
FreeEnvironmentStringsW
HeapAlloc
ReadFile
VirtualFree
DebugBreak
GetDateFormatA
AddAtomA
GetVersion
LoadResource
HeapFree
GetFileAttributesW
TlsSetValue
WritePrivateProfileStringW
HeapCreate
TerminateProcess
GetPrivateProfileIntW
GetTempPathW
GetStartupInfoW
GetModuleFileNameA
SizeofResource
CopyFileW
GetModuleFileNameW
GetProcAddress
LoadLibraryA
FindNextChangeNotification
SetLastError
lstrcpynA
SetUnhandledExceptionFilter
RaiseException
SetStdHandle
lstrcpyW
FindResourceW
GetFileType
VerLanguageNameW
GetCurrentProcess
lstrcmpiW
WaitForSingleObject
LCMapStringA
LocalAlloc
GetSystemDefaultLangID
SetHandleCount
UnhandledExceptionFilter
IsProcessorFeaturePresent
CompareStringW
GetACP
ExitProcess
GlobalUnlock
TlsGetValue
LoadLibraryW
WideCharToMultiByte
DeleteCriticalSection
GlobalLock
IsValidLocale
MulDiv
CreateFileW
GetModuleHandleW
GetUserDefaultLCID
LCMapStringW

user32

DefFrameProcW
LoadIconW
WindowFromPoint
OpenClipboard
ModifyMenuW
PtInRect
SetTimer
GetMenuItemID
InflateRect
RegisterWindowMessageW
GetDC
GetWindowDC
CreateWindowExW
EndPaint
CreatePopupMenu
LoadMenuW
IsClipboardFormatAvailable
CopyRect
GetMenuDefaultItem
GetSystemMetrics
ClientToScreen
IsChild
SetWindowTextW
LoadBitmapW
GetCursorPos
SendMessageW
TranslateAcceleratorW
GetSystemMenu
GetWindow
GetWindowLongW
GetMessageW
OffsetRect
GetMonitorInfoW
SetScrollInfo
GetMenuStringW
RegisterClassExW
TranslateMessage
EnableWindow
GetScrollInfo
GetDesktopWindow
PeekMessageW
IsWindowEnabled
PostQuitMessage
GetSubMenu
RegisterClassW
DefMDIChildProcW
IntersectRect
DialogBoxParamW
DrawMenuBar
UnhookWindowsHookEx
UnregisterClassW
SetParent
FrameRect
DestroyMenu
DefWindowProcW
GetActiveWindow
GetWindowTextW
EmptyClipboard
EndDeferWindowPos
InvalidateRect
GetWindowTextLengthW
GetWindowThreadProcessId
IsMenu
LoadStringA
FindWindowW
SetFocus
InsertMenuW
GetWindowRect
DeferWindowPos
ShowScrollBar
GetClassNameW
SetScrollPos
LockWindowUpdate
ReleaseDC
SetForegroundWindow
GetCapture
BeginDeferWindowPos
SetWindowsHookExW
DestroyCaret
GetParent
CharNextW
DragDetect
FillRect
GetMenuItemInfoW
CallNextHookEx
MonitorFromWindow
LoadImageW
GetDoubleClickTime
PostMessageW
wvsprintfW
CreateCaret
GetWindowLongA
SetClipboardData
DispatchMessageW
BringWindowToTop
DrawFrameControl
GetSysColorBrush
ReleaseCapture
GetKeyState
GetMessagePos
GetFocus
GetClassInfoW
MapWindowPoints
EndDialog
GetMenu
SetMenuDefaultItem
GetWindowPlacement
DrawFocusRect
CloseClipboard
DestroyWindow
IsWindowVisible
AppendMenuW
GetDlgCtrlID
SetMenuItemInfoW
LoadCursorW
ScreenToClient
GetDlgItemTextW
MoveWindow
UpdateWindow
SetMenu
MessageBoxW
KillTimer
MessageBeep
SetDlgItemInt
RemoveMenu
SetRectEmpty
TranslateMDISysAccel
SystemParametersInfoW
SetCursor
LoadStringW
UnregisterClassA
EqualRect
CharLowerW
SetCaretPos
TrackPopupMenuEx
SetDlgItemTextW
RegisterClipboardFormatW
BeginPaint
DrawEdge
CallWindowProcW
TrackPopupMenu
GetDlgItemInt
RedrawWindow
SetCapture
SetWindowPos
ScrollWindowEx
LoadAcceleratorsW
GetClassLongW
GetClientRect
EnableMenuItem

gdi32

Polyline
SelectPalette
ExtTextOutW
DeleteObject
GetTextExtentPointW
DeleteDC
SelectObject
GetTextMetricsW
GetDeviceCaps
CreateBitmap
IntersectClipRect
SetWindowOrgEx
LPtoDP
SetTextColor
GetClipRgn
SetPolyFillMode
SelectClipRgn
CreatePalette
GetTextExtentPoint32W
MoveToEx
CreateFontIndirectW
CreateSolidBrush
GetViewportOrgEx
DPtoLP
CreateFontW
RestoreDC
SetViewportOrgEx
Rectangle
CreateCompatibleDC
Polygon
GetStockObject
SetBrushOrgEx
GetClipBox
CreateDIBSection
LineTo
CreatePatternBrush
PatBlt
CreateCompatibleBitmap
SetBkColor
SaveDC
TextOutW
SetBkMode
CreatePen
GetObjectW
BitBlt
CreateRectRgn
RealizePalette

comdlg32

GetFileTitleW

oleaut32

VarI4FromStr
VarDecCmp
VarR8FromStr
SystemTimeToVariantTime
VarDecFromStr
SysFreeString
VarUI4FromStr

wsock32

getsockname
bind
ioctlsocket
shutdown
WSAGetLastError
inet_addr
socket
closesocket
accept
send
getpeername
connect
htons
WSASetLastError
recv
listen
gethostbyname
WSAAsyncSelect
ntohs

msvcrt

_exit
__dllonexit
__set_app_type
_controlfp
time
__p__commode
_adjust_fdiv
_acmdln
fopen
wcslen
_setmbcp
_initterm
_XcptFilter
strncmp
_except_handler3
memmove
__getmainargs
sprintf
rand
_strnicmp
strchr
localtime
_purecall
_ftol
atol
__p__fmode
fwrite
exit
atoi
__CxxFrameHandler
__setusermatherr
_i64toa
fclose
_onexit
_stricmp

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data1
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data2
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

698295463cfd9aebfd5849570d408a06

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

oleaut32

wsock32

msvcrt

Sections

.text Size: 14KB - Virtual size: 14KB

.data1 Size: 3KB - Virtual size: 3KB

.data2 Size: 42KB - Virtual size: 41KB

.rdata Size: 41KB - Virtual size: 41KB

.data Size: 28KB - Virtual size: 309KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 14KB - Virtual size: 14KB

.data1
Size: 3KB - Virtual size: 3KB

.data2
Size: 42KB - Virtual size: 41KB

.rdata
Size: 41KB - Virtual size: 41KB

.data
Size: 28KB - Virtual size: 309KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB