b6d0781d767ee0d6e3550fb6a508196de99d38e88a07298ba702407021a6a3be

Sharing

Copy URL

Twitter E-mail

General

Target

b6d0781d767ee0d6e3550fb6a508196de99d38e88a07298ba702407021a6a3be
Size

121KB
MD5

66802bd860b4cacb629b0958f0ca5029
SHA1

fb91f7738b7e0f71cecb4afb33c442f05d1150ea
SHA256

b6d0781d767ee0d6e3550fb6a508196de99d38e88a07298ba702407021a6a3be
SHA512

6925b1830bbad9a28783915caedb9cc92317d6c61278a0f8748940ed4285efc6f319f768ae031e0d1c97ad9ab85569d50acb0d9feeac212202eda9f89c3a170b
SSDEEP

3072:cNybJ7pN9W3JDUEnsu4halmLZd762voOxWKMqjBN:cwt7PEnshalSb762gAN

Score

N/A

Malware Config

Signatures

Files

b6d0781d767ee0d6e3550fb6a508196de99d38e88a07298ba702407021a6a3be
.exe windows x86

f96b8354c32ae548c2cd0e40db1677cb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
CreateMutexW
GetVersionExW
HeapSize
TerminateProcess
GetCommandLineW
TlsFree
LockResource
GlobalFree
SetStdHandle
SetFileAttributesW
GetProcAddress
GetDateFormatA
FileTimeToLocalFileTime
GetTimeFormatW
lstrcpynW
GetFileAttributesW
GetLocalTime
VirtualFree
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetSystemInfo
PeekNamedPipe
GetProcessHeap
FileTimeToSystemTime
SetEvent
HeapReAlloc
GetModuleHandleW
GetConsoleMode
WaitForMultipleObjects
SetUnhandledExceptionFilter
WriteConsoleA
CreateEventW
FindResourceW
ResumeThread
GlobalSize
LoadLibraryA
GetCurrentProcessId
GetCurrentThreadId
LCMapStringW
LCMapStringA
VirtualProtect
VirtualQuery
InterlockedExchange
RtlUnwind
IsBadWritePtr
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
HeapFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetLastError
WideCharToMultiByte
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
WriteFile
GetCurrentProcess
GetVersionExA
MoveFileW
QueryPerformanceCounter
GetSystemTimeAsFileTime
lstrlenW
InterlockedCompareExchange
GetStartupInfoA
lstrcpyW
FlushFileBuffers
GlobalLock
WriteConsoleW
SizeofResource
CreateDirectoryW
ExpandEnvironmentStringsW
CreateThread
GetDateFormatW
CopyFileW
GetModuleFileNameA
DeleteCriticalSection
GetTickCount
CreatePipe
Sleep
GetUserDefaultLCID
LoadResource
LeaveCriticalSection
ExitProcess
LocalUnlock
GetLocaleInfoA
VirtualAlloc
lstrcmpW
InterlockedDecrement
CompareStringW
MulDiv
GetDriveTypeA
GetCommandLineA
FindClose
GetCurrentDirectoryA

user32

RegisterClassExW
EnableMenuItem
CreateMenu
GetMessageA
CreatePopupMenu
MoveWindow
EnableWindow
IsChild
CallNextHookEx
InvalidateRect
SetScrollRange
MessageBeep
FrameRect
GetMonitorInfoW
GetScrollPos
GetWindowPlacement
HideCaret
DrawMenuBar
DefWindowProcW
SetWindowsHookExW
RemoveMenu
GetFocus
GetParent
SetWindowLongA
LoadStringW
CreateWindowExW
SetScrollPos
SetCaretPos
CreateDialogIndirectParamW
IsZoomed
SystemParametersInfoW
GetMenuStringW
SetForegroundWindow
DrawEdge
RedrawWindow
CreateAcceleratorTableW
CallWindowProcA
PostMessageW
SetCursor
SetWindowPlacement
DestroyCaret
SetDlgItemTextW
GetSubMenu
ClientToScreen
CharLowerW
RealChildWindowFromPoint
PostQuitMessage
DestroyMenu
ScrollWindow
ToAscii
DrawFrameControl

gdi32

DeleteDC
CreatePen
GetTextExtentPointW
CreateFontW
SetBkMode
SetTextAlign
SetROP2
GetROP2
BitBlt
StartDocW
StartPage
GetStockObject
CreateFontIndirectW
ExtTextOutW
DPtoLP
MoveToEx
EndDoc
SetBrushOrgEx
CreatePatternBrush
GetDeviceCaps
GetTextMetricsW
SelectObject
EnumFontFamiliesExW
RemoveFontResourceW
AddFontResourceW
RestoreDC
CreateCompatibleDC
SaveDC
OffsetWindowOrgEx
GetTextExtentPoint32W
SetBkColor
SetTextColor
CreateBitmap
EndPage

comdlg32

PageSetupDlgA
GetSaveFileNameA
GetFileTitleA
GetFileTitleW
FindTextW
ChooseColorW
ChooseFontA
GetSaveFileNameW
PrintDlgW
GetOpenFileNameW
ReplaceTextA
ReplaceTextW
PageSetupDlgW
ChooseColorA
ChooseFontW
FindTextA
GetOpenFileNameA

ole32

WriteClassStm

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 82KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f96b8354c32ae548c2cd0e40db1677cb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 82KB - Virtual size: 126KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 82KB - Virtual size: 126KB

.rsrc
Size: 4KB - Virtual size: 4KB