abb18a5ac4377b6edecd076ed676bd2b3b7eae44dd8ce37d1a30ce5580b24454

Sharing

Copy URL

Twitter E-mail

General

Target

abb18a5ac4377b6edecd076ed676bd2b3b7eae44dd8ce37d1a30ce5580b24454
Size

248KB
MD5

b70d5a7eeaa1051b5c5d1b55a5f23a60
SHA1

79320263f6375466e7fa3f74ff2db61c2e19a4ae
SHA256

abb18a5ac4377b6edecd076ed676bd2b3b7eae44dd8ce37d1a30ce5580b24454
SHA512

2aa9a96073122ed395058d98a2bc432fccd5b086e61b00a876c35a5feb753b9eb77222501a0532ceb04158e3316f7d8a3a254d6d5190450849a641548d061ebe
SSDEEP

6144:/iH+XgkjMRgrNFbfsgR6UVpJK5qYgAmnvkCck:XXgkwRgrLbUgR/rJK5DPCH

Score

N/A

Malware Config

Signatures

Files

abb18a5ac4377b6edecd076ed676bd2b3b7eae44dd8ce37d1a30ce5580b24454
.exe windows x86

ce9ba3580704f6b13aabd213afaeb861

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GlobalAlloc
GetStringTypeA
WaitForMultipleObjects
GetExitCodeProcess
ClearCommError
GlobalUnlock
DeleteFileA
ResetEvent
GetConsoleOutputCP
CreateDirectoryA
SetupComm
FindResourceW
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
LCMapStringW
MultiByteToWideChar
LoadLibraryA
GetProcAddress
IsBadWritePtr
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
CreateMutexW
FatalAppExitA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetCurrentThread
GetLastError
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetLocaleInfoA
SetEnvironmentVariableA
GetCurrentProcessId
FindCloseChangeNotification
FileTimeToSystemTime
InterlockedExchangeAdd
PurgeComm
CreateDirectoryW
SizeofResource
LockResource
FindFirstFileA
GetFileAttributesA
VirtualAlloc
GetSystemTimeAsFileTime
CreateFileMappingA
FileTimeToLocalFileTime
lstrlenA
OutputDebugStringA
CreateJobObjectA
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
CompareStringW
DeleteFileW
FormatMessageA
LCMapStringA
GlobalFree
GetEnvironmentStrings
LocalAlloc
CompareStringA
GetCurrentThreadId
SetStdHandle
CreateProcessW
WriteConsoleW
FindNextFileW
IsValidCodePage
LoadLibraryExW
Sleep
ReleaseMutex
TerminateJobObject
GetSystemInfo
CreateEventA
GlobalLock
GetConsoleCP
FindNextFileA
GetCPInfo
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetLocaleInfoW

user32

GetDlgItemInt
GetCursorPos
DestroyWindow
ShowWindowAsync
SetForegroundWindow
IsWindowVisible
InvalidateRect
IsWindowEnabled
GetSystemMetrics
GetClientRect
MessageBoxA
GetDlgItemTextA
GetWindowLongW
GetWindowDC
GetWindowPlacement
SetWindowPos
GetWindowTextW
GetWindowTextLengthW
GetWindowLongA
LoadStringA
GetDlgItem
GetWindowThreadProcessId
PostQuitMessage
GetSysColorBrush
BeginPaint
EndDialog
GetDlgItemTextW
SetCursor
GetWindowRect
SetRectEmpty
ReleaseDC
GetDCEx
GetMenuItemCount
TranslateMessage
LoadStringW
GetParent
ShowWindow
MessageBoxW
EnableWindow
GetWindowTextLengthA
GetWindowTextA
SetTimer
EndPaint
GetDesktopWindow
SendMessageA
IsWindowUnicode

gdi32

ExtSelectClipRgn
SetTextColor
LineTo
SetStretchBltMode
GetStockObject
BitBlt
DeleteDC
GetTextExtentPoint32W
SelectPalette
GetObjectA
SetMapMode
SetViewportOrgEx
RestoreDC
MoveToEx
SetWindowOrgEx
GetObjectW
CreateFontIndirectA
GetStretchBltMode
GetDeviceCaps
CreateRectRgnIndirect
StretchBlt
ExtCreatePen
SaveDC
SetBkColor
RealizePalette
SelectObject
PatBlt
Rectangle
GetClipBox
CreatePalette
CreateCompatibleDC
CreateBitmap
ExtTextOutA
DeleteObject
CreatePenIndirect
SetBkMode
RectVisible
SelectClipRgn
CreateDIBSection
ExtTextOutW
CreateCompatibleBitmap
CreateFontIndirectW
CreateSolidBrush
CreateDIBitmap

ole32

OleUninitialize
OleRegGetUserType
OleIsRunning
OleInitialize
CoGetClassObject
StringFromCLSID
CLSIDFromProgID
CoCreateInstance
CoRevokeClassObject
CoTaskMemFree
CoCreateGuid
OleRun
CoUninitialize
CoRegisterMessageFilter
CoTaskMemAlloc
ReleaseStgMedium
CoLockObjectExternal
CoFreeUnusedLibraries
CoDisconnectObject
RevokeDragDrop
RegisterDragDrop
CoInitializeSecurity
CreateILockBytesOnHGlobal
CoQueryProxyBlanket
CreateStreamOnHGlobal
CLSIDFromString
GetRunningObjectTable
OleFlushClipboard
StgCreateDocfileOnILockBytes
CoInitialize
CreateBindCtx

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce9ba3580704f6b13aabd213afaeb861

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 160KB - Virtual size: 273KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 160KB - Virtual size: 273KB

.rsrc
Size: 20KB - Virtual size: 17KB