9cf9aff7075959525d7d2cbfe7a8a4f50962f133c13fe4c22fb6760d52b18db6

Sharing

Copy URL Twitter E-mail

General

Target

9cf9aff7075959525d7d2cbfe7a8a4f50962f133c13fe4c22fb6760d52b18db6
Size

172KB
MD5

2333b3bbc0f8c99d8c3171b4c5338110
SHA1

c15d754410c18d6848b07812f740428b10041e4f
SHA256

9cf9aff7075959525d7d2cbfe7a8a4f50962f133c13fe4c22fb6760d52b18db6
SHA512

8b92f1e4f002af170116d9de5e1ee658fe4d4eb0e2f2921120308b3b445dc6f8eecac67f6568abf175ba8cc3974fd6c2f8bb7ee6ca555867e0ad3d3d22736ec7
SSDEEP

3072:25jlXRFSICa6HcA15RWm2JL7l0f4GDH9MVQu69f8w/D2X4hrOta24M2g4b:Oj1RFSI25MmoLh0grK/DQQ/v

Score

N/A

Malware Config

Signatures

Files

9cf9aff7075959525d7d2cbfe7a8a4f50962f133c13fe4c22fb6760d52b18db6
.exe windows x86

e3744ebb99a88d453ddaeed7890c0ccc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
HeapSize
ReadFile
SetEndOfFile
VirtualQuery
InterlockedExchange
RtlUnwind
GetCPInfo
GetACP
IsBadWritePtr
HeapReAlloc
VirtualAlloc
FlushFileBuffers
CreateFileA
VirtualFree
HeapCreate
GetLocaleInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
WriteFile
CloseHandle
HeapFree
SetFilePointer
GetLastError
GetCurrentProcess
TerminateProcess
ExitProcess
LoadLibraryA
GetProcAddress
VirtualAllocEx
lstrcpynW
GetSystemInfo
GlobalSize
SetStdHandle
InitializeCriticalSection
GetConsoleCP
GetCommandLineW
HeapAlloc
FindFirstFileW
lstrcatW
GetVersionExA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
FindClose
LeaveCriticalSection
FindNextFileW
SetUnhandledExceptionFilter
GetOEMCP
GetCurrentThreadId
EnumSystemLocalesA
WaitForMultipleObjects
GetTickCount
GetTimeFormatW
TlsSetValue
ResumeThread
GetStringTypeW
HeapDestroy
VirtualProtect

user32

SendMessageW
DrawMenuBar
DestroyWindow
SetScrollRange
SetWindowsHookExW
GetWindowLongW
GetCursorPos
RedrawWindow
DeferWindowPos
DestroyAcceleratorTable
MessageBeep
MessageBoxW
DrawFocusRect
GetMenuItemCount
SetMenu
SetWindowLongW
EnableWindow
EndPaint
ScrollWindow
DeleteMenu
DrawTextExW
CharUpperW
SetDlgItemInt
EnableMenuItem
ModifyMenuW
LoadImageW
IsDialogMessageA
IsIconic
DrawFrameControl
GetWindowPlacement
InvalidateRect
SetWindowPlacement
SetParent
GetDC
ReleaseCapture
GetMessageA
DragDetect
SetForegroundWindow
DestroyCaret
GetMenu
IsWindowVisible

gdi32

BitBlt
SaveDC
Rectangle
SelectObject
CreateSolidBrush
AddFontResourceW
GetROP2
SetTextColor
SetTextAlign
SetWindowOrgEx
DeleteObject
RestoreDC
StartDocW

comdlg32

ChooseColorA
GetFileTitleW
FindTextA
GetSaveFileNameA
GetOpenFileNameA
ReplaceTextW
ChooseFontW
PageSetupDlgA
PrintDlgW
ChooseFontA
GetFileTitleA
GetOpenFileNameW
ReplaceTextA
PageSetupDlgW
FindTextW
GetSaveFileNameW
ChooseColorW
PrintDlgA

advapi32

RegOpenKeyExA
RegCreateKeyA
RegEnumKeyExW
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueW
RegQueryInfoKeyA
RegCloseKey
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegQueryInfoKeyW
RegDeleteValueA

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3744ebb99a88d453ddaeed7890c0ccc

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 128KB - Virtual size: 380KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 128KB - Virtual size: 380KB

.rsrc
Size: 4KB - Virtual size: 4KB