e75e9f71305e3a39f607c3b34dc070e744628d9d6b28431ead0732e5c1baa31c

Sharing

Copy URL Twitter E-mail

General

Target

e75e9f71305e3a39f607c3b34dc070e744628d9d6b28431ead0732e5c1baa31c
Size

256KB
MD5

dce41807dba3ad4f142ab7e32b9a6cd1
SHA1

6f12ce9806ba8331d31644f13815b8bd4b73af2b
SHA256

e75e9f71305e3a39f607c3b34dc070e744628d9d6b28431ead0732e5c1baa31c
SHA512

cd65b3f8c1509c1fabf73db2e082fd29b1aee6bc8fa308b14b04fdbbb66eb595bed01b31351faedc8b770ce241f0e714eb0e43db25b7da54aaac676d4e0469cc
SSDEEP

6144:NVhb0LmWqLvfmEES4tjCPJasYlHWk8x7v9b05c7AObmQ9jIQR+a:NfwrqLXmEErOw8N9bN8m9U6v

Score

N/A

Malware Config

Signatures

Files

e75e9f71305e3a39f607c3b34dc070e744628d9d6b28431ead0732e5c1baa31c
.exe windows x86

75b7d60777bdfe489970dbebf28ffdf3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
LocalAlloc
LocalFree
GetVersionExW
GetFileAttributesW
GetExitCodeProcess
CreateEventW
WaitForSingleObject
InitializeCriticalSection
ExpandEnvironmentStringsA
LoadLibraryA
MulDiv
SetErrorMode
IsDebuggerPresent
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetStartupInfoW
FreeLibrary
GetModuleFileNameW
GetDateFormatW
lstrlenW
GetLastError
GetModuleHandleW
LoadLibraryW
Sleep
lstrcpyW
lstrcatW
lstrcmpiW
GetProcAddress

user32

GetSystemMetrics
DestroyIcon
InvalidateRect
LoadIconW
CopyRect
GetFocus
GetActiveWindow
GetIconInfo
PeekMessageW
SendMessageW
EnableWindow
LoadImageW
MessageBoxW
GetForegroundWindow
IsWindow

gdi32

DeleteObject
CreatePatternBrush
CreateCompatibleDC
CreatePalette
CreatePen
CreateFontIndirectW
GetStockObject
CreateSolidBrush

advapi32

SetSecurityDescriptorDacl
IsValidSecurityDescriptor
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
OpenProcessToken
FreeSid
RevertToSelf
AccessCheck
RegOpenKeyExA
RegQueryValueExA
ImpersonateSelf
OpenThreadToken
AllocateAndInitializeSid
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup

shell32

ShellExecuteW

comctl32

ord17

iphlpapi

DeleteIpForwardEntry
SetIpForwardEntry
SetIpTTL
IcmpParseReplies
Icmp6CreateFile
SetAdapterIpAddress
GetTcpStatistics
RestoreMediaSense

kbdgr

KbdLayerDescriptor

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.hZMwm
Size: 2KB - Virtual size: 307KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 82KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lxRkca
Size: 3KB - Virtual size: 541KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 138KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zzqDn
Size: 3KB - Virtual size: 484KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.v
Size: 2KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75b7d60777bdfe489970dbebf28ffdf3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

iphlpapi

kbdgr

Sections

.text Size: 12KB - Virtual size: 11KB

.hZMwm Size: 2KB - Virtual size: 307KB

.rdata Size: 3KB - Virtual size: 21KB

.edata Size: 82KB - Virtual size: 149KB

.lxRkca Size: 3KB - Virtual size: 541KB

.data Size: 7KB - Virtual size: 232KB

.edata Size: 138KB - Virtual size: 207KB

.zzqDn Size: 3KB - Virtual size: 484KB

.v Size: 2KB - Virtual size: 101KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 11KB

.hZMwm
Size: 2KB - Virtual size: 307KB

.rdata
Size: 3KB - Virtual size: 21KB

.edata
Size: 82KB - Virtual size: 149KB

.lxRkca
Size: 3KB - Virtual size: 541KB

.data
Size: 7KB - Virtual size: 232KB

.edata
Size: 138KB - Virtual size: 207KB

.zzqDn
Size: 3KB - Virtual size: 484KB

.v
Size: 2KB - Virtual size: 101KB

.rsrc
Size: 2KB - Virtual size: 1KB