b1fb15b92c0239d2a3425b506a84f82f1a96b079ae8bd6cc79c284d483fdfe2f

Sharing

Copy URL Twitter E-mail

General

Target

b1fb15b92c0239d2a3425b506a84f82f1a96b079ae8bd6cc79c284d483fdfe2f
Size

117KB
MD5

6a789a5fcaa5e84aed5bfdd36ff84399
SHA1

0d70216d0580ccb0289cd8d05626e54110218e4c
SHA256

b1fb15b92c0239d2a3425b506a84f82f1a96b079ae8bd6cc79c284d483fdfe2f
SHA512

fa12d53c6aeb7db22002465d7d257025fc8fadea5f14eb9b50d4d0cbfde506de4166641cb5c332bffe0514c8118648b84ce762ffe5e93f1062badf6d61a21b55
SSDEEP

3072:wctVpc/S4n1i+z9c+30o/SJAHM1hSNuTorX2e2frmL:7tU/Tn1Z9z0mwMYot2fy

Score

N/A

Malware Config

Signatures

Files

b1fb15b92c0239d2a3425b506a84f82f1a96b079ae8bd6cc79c284d483fdfe2f
.dll windows x86

9e9433703b1504732819382631f90644

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateDirectoryA
EnterCriticalSection
ExitProcess
GetCommandLineA
GetModuleHandleA
GetPrivateProfileStringA
GetStartupInfoA
HeapAlloc
LeaveCriticalSection
MultiByteToWideChar
QueryPerformanceCounter
RemoveDirectoryA
RtlUnwind
SetCurrentDirectoryA
SetLastError
SetUnhandledExceptionFilter
SleepEx
UnmapViewOfFile
lstrcmpA

user32

CreateMDIWindowA
MessageBoxIndirectA
DialogBoxParamA
EnableWindow
EndPaint
MessageBoxA
OemToCharW
OemToCharA
CharToOemA

advapi32

RegQueryValueA
RegOpenKeyExA
RegLoadKeyA
RegEnumKeyA
RegCloseKey

ole32

CoUninitialize
OleGetClipboard
OleFlushClipboard
CreateFileMoniker
CoTaskMemFree
CoInitialize
CoGetClassObject
CoCreateInstance
OleUninitialize
CLSIDFromProgID
OleInitialize

wininet

InternetOpenA
InternetQueryDataAvailable
InternetSetFilePointer
InternetSetOptionExA
InternetGetLastResponseInfoA
InternetGetCookieA
InternetCrackUrlA
InternetConnectA
InternetCloseHandle
HttpSendRequestA
HttpQueryInfoA
HttpOpenRequestA
HttpAddRequestHeadersA

shell32

ShellExecuteA
SHGetPathFromIDListA
SHGetMalloc
SHGetFileInfoA
SHGetDesktopFolder
SHFileOperationA
ShellExecuteExW
SHBindToParent

Sections

.text
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e9433703b1504732819382631f90644

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

wininet

shell32

Sections

.text Size: 55KB - Virtual size: 56KB

.rdata Size: 42KB - Virtual size: 44KB

.data Size: 9KB - Virtual size: 136KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 7KB - Virtual size: 8KB

.text
Size: 55KB - Virtual size: 56KB

.rdata
Size: 42KB - Virtual size: 44KB

.data
Size: 9KB - Virtual size: 136KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 7KB - Virtual size: 8KB