1c5fa96111d067b4760907863d7da64e32c305132a97a519401993e73ae22f33

Sharing

Copy URL

Twitter E-mail

General

Target

1c5fa96111d067b4760907863d7da64e32c305132a97a519401993e73ae22f33
Size

961KB
MD5

925754d6f7a642345a32ab7371d1e4a0
SHA1

55d1a7e52c94bd33220184b1bbfc6c2182f0bc8f
SHA256

1c5fa96111d067b4760907863d7da64e32c305132a97a519401993e73ae22f33
SHA512

d222bf615f2ac933b67c07dca213402c863acbc84fc9c5f84b3f787dba4c3063e38a4f493ec2e862097fc92d36e0bae05b90ede483295da09a8f17681b51c4d6
SSDEEP

6144:h/RZIO99eAp8jhSDYhp2zbiaDeK1x5GlekMaZ1PXX8RyaE8:h/7IOHeAp8jhSDYX2qqxMlek1ZN8Rv/

Score

N/A

Malware Config

Signatures

Files

1c5fa96111d067b4760907863d7da64e32c305132a97a519401993e73ae22f33
.exe windows x86

daf1a2e4611541e2780e7758d49b9169

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelDeviceWakeupRequest
FormatMessageW
GetBinaryType
GetConsoleAliasA
GetConsoleMode
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNumberFormatA
GetProcAddress
GetStringTypeExW
GetTempPathW
LoadLibraryA
LoadLibraryW
LocalFree
OutputDebugStringA
WriteProfileStringA
CreateMailslotW
DisableThreadLibraryCalls
Heap32ListFirst
LocalAlloc
Sleep
CreatePipe
DebugBreak
GetProcessHeap
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
MultiByteToWideChar
WideCharToMultiByte
WriteConsoleInputA
lstrcmpW
lstrlenA
lstrlenW
CloseHandle
DeleteFileW
GetComputerNameW
GetCurrentProcess
GetCurrentThread
GetOverlappedResult
GetTempFileNameW
GetTickCount
InterlockedCompareExchange
InterlockedExchange
IsValidLocale
ReadFile
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
WaitForDebugEvent
WriteConsoleOutputAttribute
WriteFile
GetLocalTime
GetLocaleInfoA
EnumDateFormatsExW
FreeLibrary
GetCommandLineW
GetDiskFreeSpaceExW
GetStartupInfoA
GetVolumeInformationW
LoadLibraryExW
MulDiv
ReadProcessMemory
RemoveDirectoryA
SetErrorMode
SetEvent
WaitForSingleObject
lstrlen
BackupRead
BeginUpdateResourceW
CreateFileW
EndUpdateResourceW
EnumCalendarInfoA
FindNextVolumeMountPointW
FindResourceExW
FindResourceW
GetCurrentThreadId
GetSystemDirectoryW
GetUserDefaultUILanguage
GlobalHandle
InterlockedDecrement
InterlockedIncrement
LoadResource
LockResource
OutputDebugStringW
SizeofResource
TlsSetValue
CreateEventW
CreateFileMappingW
CreateMutexW
CreateThread
DeviceIoControl
IsBadReadPtr
IsBadWritePtr
MapViewOfFile
OpenEventW
OpenFileMappingW
PulseEvent
ReleaseMutex
ReleaseSemaphore
ResumeThread
SetThreadPriority
UnmapViewOfFile
lstrcpyW
VirtualAlloc
DeleteTimerQueueEx
FindNextVolumeMountPointA
FlushFileBuffers
GetCalendarInfoA
GetFileSize
GetNamedPipeHandleStateA
LocalHandle
Module32NextW
OpenJobObjectW
OpenWaitableTimerW
RaiseException
ReadConsoleOutputAttribute
ReplaceFileA
SetMailslotInfo
SuspendThread
WriteConsoleA
WriteProcessMemory
_lcreat
CreateDirectoryExW
GetConsoleFontSize
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapDestroy
QueryPerformanceCounter
ResetWriteWatch
_lopen
lstrcatW
lstrcmpiW
lstrcpynW
FileTimeToSystemTime
GetConsoleTitleA
GetHandleInformation
GetProfileSectionA
GetThreadPriorityBoost
UnregisterWaitEx
CreateProcessW
ExpandEnvironmentStringsW
GetFileAttributesExW
SetPriorityClass
GetLastError
GetFileAttributesA
Beep
GetDriveTypeA
GetCurrentDirectoryA
GetFullPathNameA
HeapFree
HeapAlloc
ExitProcess
GetFileType
RtlUnwind
FindFirstFileA
FindNextFileA
GetCommandLineA
GetVersionExA
SetEndOfFile
FindFirstFileW
FindNextFileW
CreateDirectoryW
FindClose
FileTimeToLocalFileTime
GetDriveTypeW
CreateProcessA
DuplicateHandle
DeleteFileA
CompareStringA
GetCPInfo
CompareStringW
GetExitCodeProcess
SetConsoleCtrlHandler
GetDiskFreeSpaceA
SetLocalTime
LCMapStringA
LCMapStringW
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
GetTimeFormatA
GetDateFormatA
TlsAlloc
SetLastError
TlsFree
TlsGetValue
IsBadCodePtr
DeleteCriticalSection
FatalAppExitA
HeapCreate
VirtualFree
SetHandleCount
GetStdHandle
SetFilePointer
SetStdHandle
VirtualProtect
GetSystemInfo
VirtualQuery
GetFileAttributesW
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidCodePage
GetStringTypeA
GetStringTypeW
GetFullPathNameW
SetCurrentDirectoryA
GetACP
GetOEMCP
CreateFileA
GetTimeZoneInformation
HeapSize
InitializeCriticalSection
GetCurrentDirectoryW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetLocaleInfoW

oleaut32

LPSAFEARRAY_UserUnmarshal
VarCyAdd
SysStringLen
RegisterActiveObject
VariantInit
VarDateFromStr
OleCreatePropertyFrame
SafeArrayGetLBound
VarBoolFromI4
VarUI1FromBool
SafeArrayUnlock
VarR4FromDate
DosDateTimeToVariantTime
VarDateFromUdateEx
VarDiv
VarR8Pow
VarUI1FromStr
GetActiveObject
SafeArrayGetElement
VarBstrCmp
VarCat
VarCySu

user32

CharToOemBuffA
DefFrameProcA
DefFrameProcW
DefWindowProcA
DialogBoxParamW
EnableWindow
EndDialog
GetClassNameA
GetDlgItem
GetDlgItemTextW
GetFocus
GetParent
GetTabbedTextExtentA
GetWindowLongW
IsCharUpperA
KillTimer
LoadStringW
MessageBeep
MessageBoxW
SendDlgItemMessageW
SendMessageW
SetCursorPos
SetDlgItemTextW
SetLastErrorEx
SetWindowLongW
SetWindowTextW
ShowWindow
DdeFreeStringHandle
DdeImpersonateClient
GetInputState
ArrangeIconicWindows
BeginDeferWindowPos
BroadcastSystemMessage
GetKeyboardLayoutNameW
OemToCharA
PostMessageW
RegisterHotKey
SetMessageQueue
RealGetWindowClass
CreateDialogParamA
CreateDialogParamW
DestroyWindow
DialogBoxIndirectParamA
DispatchMessageW
DrawFocusRect
EnumClipboardFormats
GetClientRect
GetSystemMetrics
GetWindowTextW
IsDialogMessageW
LoadCursorW
PeekMessageW
SetForegroundWindow
SetThreadDesktop
TranslateMDISysAccel
TranslateMessage
wvsprintfA
BeginPaint
CreateWindowExW
DefMDIChildProcA
DefWindowProcW
DestroyIcon
EndPaint
EqualRect
FillRect
GetCaretPos
GetClassInfoExW
GetCursorPos
GetDC
GetMonitorInfoW
GetPropW
GetSysColor
GetUpdateRect
GetWindow
GetWindowRect
IMPQueryIMEW
IsRectEmpty
IsWindow
LoadImageW
MonitorFromPoint
PtInRect
RegisterClassExW
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropW
ScreenToClient
SetRect
SystemParametersInfoW
UnregisterClassW
SendMessageTimeoutW
ToAscii
UnpackDDElParam
ChangeDisplaySettingsExW
DrawFrame
DrawTextA
EnumPropsW
GetGuiResources
GetMessageA
GetScrollRange
GetShellWindow
InvalidateRect
IsWindowUnicode
MapDialogRect
OpenInputDesktop
CharNextW
CharPrevW
GetForegroundWindow
SetScrollInfo
ValidateRgn
IsWindowVisible
SwapMouseButton
ClipCursor
CopyIcon
EnumDesktopsW
FindWindowExW
GetQueueStatus
GetWindowThreadProcessId
SetUserObjectSecurity
TileChildWindows
WaitForInputIdle

Sections

.text
Size: 292KB - Virtual size: 290KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 584KB - Virtual size: 581KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

daf1a2e4611541e2780e7758d49b9169

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

Sections

.text Size: 292KB - Virtual size: 290KB

.rdata Size: 584KB - Virtual size: 581KB

.data Size: 80KB - Virtual size: 92KB

.text
Size: 292KB - Virtual size: 290KB

.rdata
Size: 584KB - Virtual size: 581KB

.data
Size: 80KB - Virtual size: 92KB