5bb3aa9ee47d6277c1685c9ea48907d21655cde25d631afc24bbc5239dc33ef0

Sharing

Copy URL

Twitter E-mail

General

Target

5bb3aa9ee47d6277c1685c9ea48907d21655cde25d631afc24bbc5239dc33ef0
Size

158KB
MD5

fa5fecf92956dfa17ceb3908aa75f0b5
SHA1

46a196177dc3cba938d4b497c096c39a78e4c1a7
SHA256

5bb3aa9ee47d6277c1685c9ea48907d21655cde25d631afc24bbc5239dc33ef0
SHA512

ccea7f4d1a4d1bf1a0e97467584b8f173139e8093804043f9ae699adb784b18c44c5e9c20c3ff94d190a8482f0a8693a2cb92f6c754acb4183b3ba177b427d50
SSDEEP

3072:c/+bBCptKH89mbvsB3MpCQ6z6BztiPurQVf9JjsKIV7nCHf0KspfpP:wpV9yvsB3sCQ6YrQV1JjspFnCdspxP

Score

N/A

Malware Config

Signatures

Files

5bb3aa9ee47d6277c1685c9ea48907d21655cde25d631afc24bbc5239dc33ef0
.exe windows x86

aabcecc45fb558be9a6a606651668d8a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryA
DeleteCriticalSection
GetLongPathNameA
UnregisterWait
CreateDirectoryA
FileTimeToLocalFileTime
GetComputerNameA
SetUnhandledExceptionFilter
BackupWrite
VirtualFreeEx
GetVersionExA
SetConsoleCursorPosition
SetConsoleTitleA
GetPrivateProfileStringA
OpenSemaphoreW
FreeLibraryAndExitThread
GetNamedPipeHandleStateW
HeapDestroy
lstrcatW
SuspendThread
SwitchToThread
GetStartupInfoA
WritePrivateProfileSectionW
BeginUpdateResourceA
SystemTimeToFileTime
HeapSize
RtlMoveMemory
GetThreadLocale
DebugBreak
GlobalAddAtomA
GetCurrentProcessId
ChangeTimerQueueTimer
GetModuleFileNameW
DeleteFiber
GetPrivateProfileStructA
GetTempFileNameW
GetThreadPriorityBoost
CallNamedPipeA
GetCalendarInfoW
GetWindowsDirectoryA
GetComputerNameW
UnlockFileEx
FillConsoleOutputCharacterW
OpenFile
HeapAlloc
FreeLibrary
GetLocaleInfoW
GetACP
IsBadCodePtr
CreateSemaphoreW
GetTapeParameters
CreateSemaphoreA
Module32FirstW
DeleteFileW
SetCommConfig
LocalReAlloc
Module32NextW
GetCurrentConsoleFont
SetLocalTime
GetModuleHandleA
GlobalHandle
VirtualProtect
WriteProcessMemory
ReadFileScatter
CreateFileW
SetConsoleCP
GetProcessHeap
CancelDeviceWakeupRequest

msvcrt

_ltoa
_fputwchar
_searchenv
_ecvt
_adj_fdiv_r
_controlfp
_except_handler3
__set_app_type
_atoi64
toupper
_ismbbtrail
_wcreat
getchar
_ismbcl0
_sleep
vfprintf
_amsg_exit
iswcntrl
_ftol
_isnan
_wtoi
__getmainargs
_cscanf
memmove
_adjust_fdiv
_initterm
islower
_wfindfirst
_mktemp
_fstat
_control87
_wspawnlp
vsprintf
_filelengthi64
_eof
_fgetchar
atoi
fsetpos
_stricoll
ldiv
_finite
_lrotl
_i64tow
_XcptFilter
_outpd
_strdate
_fstat64
_exit
_aligned_offset_realloc
_ismbblead
_mbsinc
_strrev
strxfrm
_execvpe
__p__commode
_mbscat
_endthread
_mbsdup
_acmdln
_open
_getws
_dstbias
_getmaxstdio
_ismbbalnum
_i64toa
_locking
exit
_execlp
iscntrl
__setusermatherr
floor
_ungetch
putchar
iswalpha
_callnewh
_putw
_scprintf
vfwprintf
__p__fmode
_setsystime
frexp
_ismbcpunct
_adj_fdiv_m16i
time
_ismbbkana

user32

MonitorFromWindow
ClientToScreen
EndDialog
GetKeyboardLayoutList
wvsprintfW
SendMessageTimeoutW
GetCursorInfo
PostMessageA
TranslateAcceleratorA
IMPGetIMEW
ScreenToClient
MsgWaitForMultipleObjectsEx
CreateIcon
CreateMDIWindowW
DlgDirListComboBoxW
ChangeDisplaySettingsExW
GetTabbedTextExtentA
IsZoomed
CloseWindowStation
GetWindowLongA
keybd_event
SetScrollPos
MsgWaitForMultipleObjects
GetOpenClipboardWindow
GetAltTabInfoA
AnyPopup
EnumDisplaySettingsW
PaintDesktop
VkKeyScanW
WindowFromDC
PrivateExtractIconsW
DrawMenuBar
EndTask
GetQueueStatus
MonitorFromRect
RealGetWindowClassW
IsWindow
DefMDIChildProcW
CreateDialogParamA
IsCharAlphaW
SendDlgItemMessageW
GetDCEx
GetIconInfo
OpenDesktopA
RealChildWindowFromPoint
GetClassLongA
LoadMenuA
LookupIconIdFromDirectory
LoadCursorA
LockWindowUpdate
SendIMEMessageExW
LockSetForegroundWindow
SendNotifyMessageA
DeregisterShellHookWindow
CharToOemA
GetNextDlgTabItem
DrawTextW
RegisterHotKey
PeekMessageA
PrivateExtractIconsA
SetForegroundWindow
GetComboBoxInfo

Sections

.text
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aabcecc45fb558be9a6a606651668d8a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 78KB - Virtual size: 78KB

.rdata Size: 67KB - Virtual size: 67KB

.data Size: 512B - Virtual size: 76KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 78KB - Virtual size: 78KB

.rdata
Size: 67KB - Virtual size: 67KB

.data
Size: 512B - Virtual size: 76KB

.rsrc
Size: 10KB - Virtual size: 9KB