f98acf91eeb2026713846b00a4fc95f5bc50720bddaa7a27882a474567dfa171

Sharing

Copy URL Twitter E-mail

General

Target

f98acf91eeb2026713846b00a4fc95f5bc50720bddaa7a27882a474567dfa171
Size

31KB
MD5

d5df0984970f98c88d9a32b76a721107
SHA1

f68103348e16c6155f50a7ae43a0e9334f5c2247
SHA256

f98acf91eeb2026713846b00a4fc95f5bc50720bddaa7a27882a474567dfa171
SHA512

4358710a1e9cbed3df2b396e369ef6bea2d72111d3d36f1f911e3f6a60718119f9bc3be247384489ea45c6e1fb759b828e6331293aaf267d550a1830d11d342e
SSDEEP

768:DmqqwIkmmm0NcmchFsdRov2OT7HFK5jC5kvMwb:CdkbfNgFoQ7Hc5jEkEg

Score

N/A

Malware Config

Signatures

Files

f98acf91eeb2026713846b00a4fc95f5bc50720bddaa7a27882a474567dfa171
.exe windows x86

575a71b2fdd8a0cbd8adf639e24298a3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginPaint
FrameRect
GetDC
DefWindowProcW
GetClientRect
GetMessageW
EndPaint
ValidateRect
DestroyWindow
IsWindowVisible
MessageBoxExA
DispatchMessageW
FindWindowExA
GetSysColor
TranslateMessage
RedrawWindow
PostMessageA
GetForegroundWindow
WinHelpA
MoveWindow
CreateAcceleratorTableW
GetWindowRect
CloseWindow
DdeNameService
SetDlgItemInt
GetMenuState
SwitchToThisWindow
GetKeyboardLayoutNameW
LoadMenuW
DrawMenuBar
InsertMenuA
TranslateAcceleratorA
AdjustWindowRectEx
LoadIconA
LoadImageW
IsIconic
ShowWindow
GetClassLongA
SetClipboardViewer
GetMessageExtraInfo
SetSysColors
GetFocus
WinHelpW
GetDlgCtrlID
IsWindowEnabled
OpenInputDesktop
UnregisterClassA
SetWindowPos

comctl32

DestroyPropertySheetPage
ImageList_Write
ImageList_Remove
ImageList_GetIcon
ImageList_LoadImageW
ImageList_Read

psapi

GetModuleBaseNameW
EnumProcessModules
EnumProcesses

gdi32

CreateBrushIndirect
SetBkColor
CreateSolidBrush
GetRgnBox
CreateFontA
SelectPalette
DeleteEnhMetaFile
TranslateCharsetInfo
GetTextFaceW
GetObjectA
CreateFontIndirectA
DrawEscape
CreatePen
SetMapMode
GetDIBits
DeleteDC
UpdateColors
StretchDIBits

kernel32

OpenProfileUserMapping
GetOverlappedResult
SizeofResource
IsValidCodePage
GlobalAddAtomA
GetLongPathNameW
WaitForDebugEvent
MoveFileW
TlsSetValue
CompareStringA
HeapValidate
GetAtomNameW
HeapAlloc
VDMConsoleOperation
SetStdHandle
FindAtomW
SearchPathW
ConnectNamedPipe
GetFileSize
SetFileAttributesA
CancelWaitableTimer
TlsGetValue
GetProcessHeap
LoadLibraryA
TlsAlloc
FreeResource
CreateDirectoryW
InterlockedExchange
HeapFree
ReadConsoleOutputCharacterA
AddAtomA
InvalidateConsoleDIBits
lstrcatA
ScrollConsoleScreenBufferA
SetEvent
GetTickCount
OpenFileMappingW
SetConsoleTitleA
DosDateTimeToFileTime
GetLocalTime
GetModuleHandleA
CloseProfileUserMapping
ResetEvent
SetThreadExecutionState
GetProcessVersion
DuplicateHandle
OpenEventA
lstrcpyA
SystemTimeToFileTime
TlsFree
GetACP
AddAtomW
InitAtomTable
FindClose
GetCommandLineA
SetTapeParameters
GetThreadContext
WaitForSingleObject
FindVolumeClose
GetSystemWindowsDirectoryW

msvcrt

_vsnprintf
fprintf
setvbuf
memset
strcoll
getchar
sscanf
tolower

Exports

Exports

_InsertDataThread@8
UbrPvxzqmegv@8
YsfWoctpwqbdu@8
_KillDataThreads@12
NwfYdunwrwkx@12
SawNoitdfvwyzdemz@4

Sections

.code
Size: - Virtual size: 31KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

575a71b2fdd8a0cbd8adf639e24298a3

Headers

DLL Characteristics

File Characteristics

Imports

user32

comctl32

psapi

gdi32

kernel32

msvcrt

Exports

Exports

Sections

.code Size: - Virtual size: 31KB

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 11KB - Virtual size: 10KB

.reloc Size: 512B - Virtual size: 486B

.code
Size: - Virtual size: 31KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 11KB - Virtual size: 10KB

.reloc
Size: 512B - Virtual size: 486B