09393a1ed894d7a723d2ff134a86b78c2e262359e2c4021cbd210346276212e1

Sharing

Copy URL Twitter E-mail

General

Target

09393a1ed894d7a723d2ff134a86b78c2e262359e2c4021cbd210346276212e1
Size

148KB
MD5

060a0c0f88093e4f7600663724d70200
SHA1

2d66781d9368637a7c26c2c0bf81ac7bb19f87a0
SHA256

09393a1ed894d7a723d2ff134a86b78c2e262359e2c4021cbd210346276212e1
SHA512

05da94c13cde4fbc8fa784055cd32080be65f6d7408acc888a8653a51b381569abb1a717a2763ddd40357e7f9ab35ad04d309b0844b3408269be941f50cdb431
SSDEEP

3072:PsZBGgF2xo5CSRYvirMcuIF7EnrB1Fx438So:Psvw8CSRl5Y+Y

Score

N/A

Malware Config

Signatures

Files

09393a1ed894d7a723d2ff134a86b78c2e262359e2c4021cbd210346276212e1
.exe windows x86

6245c3ede1600dcabe3d6e1f06451a09

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow

kernel32

FindNextFileA
FoldStringW
CopyFileA
lstrcmpiA
ReleaseMutex
MoveFileExW
WideCharToMultiByte
HeapSize
GetVersionExW
CreateDirectoryA
GlobalAddAtomA
IsDBCSLeadByte
UnmapViewOfFile
GetDateFormatW
SetMailslotInfo
IsValidLocale
GetStringTypeExW
GetTimeZoneInformation
CompareStringW
InitializeCriticalSection
DeleteFileW
GetAtomNameA
IsValidLanguageGroup
GetThreadContext
CallNamedPipeW
GetStartupInfoA
GlobalGetAtomNameW
GetCompressedFileSizeW
ClearCommError
FormatMessageW
SetLastError
GetCommState
SetFilePointer
FreeLibrary
CreateFileA
CompareFileTime
SetCurrentDirectoryA
lstrcatW
lstrcmpiW
FileTimeToLocalFileTime
FormatMessageA
GetPriorityClass
ConnectNamedPipe
GetSystemTimeAdjustment
SetCommBreak
GetWindowsDirectoryA
CreatePipe
QueryPerformanceCounter
TerminateThread
GetStdHandle
EscapeCommFunction
TlsFree
GetThreadLocale
lstrcpynA
VerSetConditionMask
GetComputerNameExW
TransactNamedPipe
GlobalReAlloc
GetCommConfig
TlsGetValue
HeapAlloc
GetCommProperties
AddAtomW
GetCommandLineA
FileTimeToSystemTime
AreFileApisANSI
GetStartupInfoW
FindNextChangeNotification
GetProcAddress
SetThreadContext
TryEnterCriticalSection
SearchPathA
GetModuleFileNameA
DeviceIoControl
GetBinaryTypeA
FindFirstChangeNotificationW
FlushFileBuffers
RtlUnwind
GetCurrentThread
WinExec
RaiseException
OpenEventW
GetUserDefaultLCID
GlobalMemoryStatusEx
lstrcpynW
SetTimerQueueTimer
OpenFile
IsBadStringPtrW
LoadLibraryExA
MultiByteToWideChar
DeleteCriticalSection
MoveFileA
VirtualFree
LoadLibraryW
GetFileType
GlobalDeleteAtom
IsBadReadPtr
CreateNamedPipeW
CreateMutexW
SetNamedPipeHandleState
GetCPInfo
GlobalFree
SetCommTimeouts
LCMapStringW
SetUnhandledExceptionFilter
lstrcmpW
GetComputerNameExA
MoveFileW
GetThreadPriority
FindResourceA
SetFileTime
LoadLibraryExW
GetModuleFileNameW
EnumResourceNamesA
GetBinaryTypeW
GetFileAttributesExW
CreateRemoteThread
SetWaitableTimer
GetTimeFormatA
GetLocaleInfoA
MoveFileExA
SizeofResource
GetCommandLineW
GetLastError
CreateThread
GlobalFlags
GetTimeFormatW
SetCommMask
VirtualProtect
GetCurrentThreadId
SetHandleInformation
GetAtomNameW
CancelWaitableTimer
WaitForMultipleObjects
EnumResourceTypesA
HeapUnlock
LocalReAlloc
GetVersionExA
lstrlenW
GetSystemInfo
SetPriorityClass
SetErrorMode
ReleaseSemaphore
ClearCommBreak
lstrcpyW
PulseEvent
DeleteFileA
ReadFile
GetComputerNameW
GetUserDefaultLangID
GlobalAlloc
AddAtomA
HeapLock
SetCommState
HeapCreate
GlobalMemoryStatus
MapViewOfFile
WaitForMultipleObjectsEx
SuspendThread
SetHandleCount
IsDBCSLeadByteEx
SetThreadExecutionState
CreateWaitableTimerW
ConvertDefaultLocale
EnterCriticalSection
CreateWaitableTimerA
WriteFile
GetExitCodeThread
SetFileAttributesW
ExitThread
FindClose
GetNumberFormatA
GlobalFindAtomW
UnhandledExceptionFilter
GetFileSize
FreeResource
lstrcatA
GetModuleHandleW
LoadResource
CreateSemaphoreA
SetupComm
SetFileAttributesA
GetTempPathW
HeapWalk
GetCommTimeouts
OpenSemaphoreW
MulDiv
GetModuleHandleA
GetSystemTime
FlushViewOfFile
FindResourceExW
LCMapStringA
SetThreadLocale
GetSystemDirectoryA
LocalSize
GetSystemWindowsDirectoryA
VerifyVersionInfoW
OpenFileMappingW
LockFile
GetFileAttributesW
QueryDosDeviceW
GlobalHandle
SetLocalTime
CreateEventA
CreateSemaphoreW
FindNextFileW
GetDateFormatA
GlobalCompact
EnumResourceNamesW
LeaveCriticalSection
GetTempPathA
FindResourceW
TlsSetValue
LocalLock
GetShortPathNameW
GetTempFileNameA
GetCommModemStatus
CloseHandle
IsBadWritePtr
lstrlenA

Exports

Exports

?ThreadA@@YGXK@Z

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.akpp
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.brafo
Size: 1024B - Virtual size: 581B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.espt
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ls0
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sorp
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.clost
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.meosi
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mfo
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.porte
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6245c3ede1600dcabe3d6e1f06451a09

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 50KB - Virtual size: 49KB

.akpp Size: 19KB - Virtual size: 19KB

.brafo Size: 1024B - Virtual size: 581B

.espt Size: 512B - Virtual size: 28B

.ls0 Size: 5KB - Virtual size: 4KB

.sorp Size: 512B - Virtual size: 64B

.data Size: 7KB - Virtual size: 6KB

.clost Size: 19KB - Virtual size: 18KB

.meosi Size: 18KB - Virtual size: 17KB

.mfo Size: 9KB - Virtual size: 8KB

.porte Size: 15KB - Virtual size: 14KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 50KB - Virtual size: 49KB

.akpp
Size: 19KB - Virtual size: 19KB

.brafo
Size: 1024B - Virtual size: 581B

.espt
Size: 512B - Virtual size: 28B

.ls0
Size: 5KB - Virtual size: 4KB

.sorp
Size: 512B - Virtual size: 64B

.data
Size: 7KB - Virtual size: 6KB

.clost
Size: 19KB - Virtual size: 18KB

.meosi
Size: 18KB - Virtual size: 17KB

.mfo
Size: 9KB - Virtual size: 8KB

.porte
Size: 15KB - Virtual size: 14KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB