94d5437142d56ef5d298db3c6c67695478a1528dab93c4873e293c99b910e95a

Sharing

Copy URL

Twitter E-mail

General

Target

94d5437142d56ef5d298db3c6c67695478a1528dab93c4873e293c99b910e95a
Size

260KB
MD5

bd480be60c2a2e9cfd4bcd5ebfdc8dce
SHA1

e21bc15ef873279d487b16be006d033c2d1eb29e
SHA256

94d5437142d56ef5d298db3c6c67695478a1528dab93c4873e293c99b910e95a
SHA512

de0c0cc20f5ab663233e524cbb81f47e588eee3d6e5bec9dde2fa16651b6c8a758e7913dddcf7a0f768187dbf7087166b3c06c9ab09e3302a232dbadb3f13e24
SSDEEP

6144:LXGMf3OA0GP9M00HNqsDb5RtRoK/IxmijgYjv1jU:LXLM8soK/WuYK

Score

N/A

Malware Config

Signatures

Files

94d5437142d56ef5d298db3c6c67695478a1528dab93c4873e293c99b910e95a
.exe windows x86

366d7193636c997c68ac6e52620eda0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rngcweb

CreateBrowserInstance

kernel32

GetSystemInfo
GetVersion
LocalFree
FormatMessageA
GetModuleHandleA
GetTempFileNameA
GetModuleFileNameA
UnmapViewOfFile
GetPrivateProfileIntA
GetVersionExA
GlobalReAlloc
lstrcmpA
GetStartupInfoA
GetFileAttributesA
OutputDebugStringA
CreateThread
GetPrivateProfileStringA
Sleep
FindFirstFileA
SetEnvironmentVariableA
CreateProcessA
CreateDirectoryA
FindNextFileA
FindClose
GetProcAddress
CopyFileA
DeleteFileA
ReleaseSemaphore
CreateSemaphoreA
GetLastError
CreateFileMappingA
CreateMutexA
WaitForSingleObject
ReleaseMutex
MapViewOfFile
LoadLibraryA
GlobalUnlock
GlobalAlloc
GlobalLock
GetTempPathA
DeleteCriticalSection
InterlockedDecrement
GlobalFree
CloseHandle
InterlockedIncrement
FreeLibrary
InitializeCriticalSection
GetShortPathNameA
MulDiv

user32

GetParent
SendMessageA
MessageBoxA
LoadStringA
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
PostMessageA
LoadAcceleratorsA
LoadIconA
ReleaseDC
DialogBoxParamA
GetDC
EndDialog
IsDlgButtonChecked
GetWindowLongA
SetDlgItemTextA
SetWindowLongA
CreateWindowExA
KillTimer
SetTimer
SetForegroundWindow
SetWindowRgn
SetWindowPos
GetWindowRect
EndPaint
BeginPaint
SetRect
RedrawWindow
ShowWindow
GetDlgItem
SetWindowTextA
CharUpperA
CharLowerA
GetSystemMetrics
CharNextA
CharPrevA
MoveWindow
SystemParametersInfoA
FindWindowA
wsprintfA
DestroyAcceleratorTable
GetDesktopWindow

advapi32

RegCreateKeyExA
RegSetValueExA
RegQueryValueA
RegDeleteValueA
RegSetValueA
RegCreateKeyA
RegOpenKeyA
RegEnumKeyExA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegDeleteKeyA
RegQueryInfoKeyA

shell32

ShellExecuteA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

gdi32

DeleteObject
CreateFontIndirectA
GetObjectA
GetDeviceCaps
BitBlt
SelectObject
DeleteDC
CombineRgn
CreateCompatibleDC
CreateDIBSection
ExtCreateRegion

winmm

PlaySoundA

wsock32

WSAStartup
WSACleanup

shlwapi

PathAppendA

pncrt

_CIpow
strncat
strlen
strcpy
_purecall
_getcwd
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_exit
_onexit
__dllonexit
ftell
fread
fseek
atoi
strcat
mktime
fprintf
calloc
_ftol
_stricmp
fopen
fclose
malloc
free
strrchr
strchr
memmove
_ismbcspace
vsprintf
_setjmp3
_iob
longjmp
_strcmpi
_strnicmp
_putenv
strncpy
getenv
??3@YAXPAX@Z
??2@YAPAXI@Z
__CxxFrameHandler
_XcptFilter
_splitpath
memcpy
tolower
strncmp
strstr
sprintf
_chdir
memset
sscanf
time
atol
_itoa

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.erdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

366d7193636c997c68ac6e52620eda0e

Headers

File Characteristics

Imports

rngcweb

kernel32

user32

advapi32

shell32

version

gdi32

winmm

wsock32

shlwapi

pncrt

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 16KB - Virtual size: 18KB

.rsrc Size: 24KB - Virtual size: 23KB

.erdata Size: 76KB - Virtual size: 76KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 16KB - Virtual size: 18KB

.rsrc
Size: 24KB - Virtual size: 23KB

.erdata
Size: 76KB - Virtual size: 76KB