786d42515cb702d28c1a0f1727b9e786b81299b5f3b5c59a70968e76d9cd3aed

Sharing

Copy URL Twitter E-mail

General

Target

786d42515cb702d28c1a0f1727b9e786b81299b5f3b5c59a70968e76d9cd3aed
Size

68KB
MD5

5a8ba29f41e1a30318928a0247df8359
SHA1

b0422d8494ba129fa87219b37c4c366cf0967017
SHA256

786d42515cb702d28c1a0f1727b9e786b81299b5f3b5c59a70968e76d9cd3aed
SHA512

4a5cd213a5ee38d8803e0694e2cc36c5be68611f80e32df04e7c1acf31440dfd456d5f25721291814ac7bfefaa0b02430c33b7035115199cd3a5210399966d03
SSDEEP

1536:8fQp+xuwtjZ1KnoIYIgGoRVu9gkg8C8OV:8LxBZiDgx+gx

Score

N/A

Malware Config

Signatures

Files

786d42515cb702d28c1a0f1727b9e786b81299b5f3b5c59a70968e76d9cd3aed
.exe windows x86

d50b43d46ba584aa201c39ff5ad67261

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

towlower
setlocale
_c_exit
_exit
_XcptFilter
_cexit
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_wcslwr
wcsstr
isalpha
tolower
exit
atoi
towupper
wprintf
toupper
swprintf
strncmp
_wcsnicmp
_wtoi
wcscat
wcsncpy
calloc
strtoul
strchr
sprintf
memchr
__winitenv
__set_app_type
_controlfp
_except_handler3
wcscmp
wcstok
wcscpy
iswctype
_wcsicmp
wcslen
vswprintf
malloc
free

advapi32

RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey
OpenProcessToken
GetTokenInformation
LookupAccountSidW
GetUserNameW

kernel32

SetConsoleCtrlHandler
CreateEventW
CreateConsoleScreenBuffer
PulseEvent
GetConsoleMode
SetConsoleMode
ReadConsoleInputW
ReadConsoleInputA
MultiByteToWideChar
GetConsoleCursorInfo
SetConsoleCursorInfo
GetModuleHandleA
WriteConsoleOutputCharacterA
WriteConsoleA
ReadConsoleOutputAttribute
GetSystemDefaultLangID
ScrollConsoleScreenBufferW
GetLargestConsoleWindowSize
WriteFile
GetCurrentProcessId
OpenProcess
LoadLibraryExW
SetConsoleActiveScreenBuffer
GetEnvironmentVariableA
GetConsoleCP
SetThreadLocale
GetThreadLocale
FormatMessageW
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
SetLastError
GetModuleHandleW
GetConsoleOutputCP
CreateThread
ExitProcess
WriteConsoleOutputAttribute
GetStdHandle
IsDBCSLeadByte
Sleep
WaitForSingleObject
WriteConsoleInputW
ResetEvent
WriteConsoleW
lstrcpynW
LocalFree
SetConsoleTitleW
SetEvent
SetConsoleWindowInfo
SetConsoleScreenBufferSize
GetConsoleScreenBufferInfo
GetEnvironmentVariableW
LocalAlloc
CloseHandle
GetLastError
CreateFileW
SetEnvironmentVariableW
FillConsoleOutputAttribute
FillConsoleOutputCharacterW
SetConsoleCursorPosition
WideCharToMultiByte
GetACP
ReadConsoleW
WriteConsoleOutputW
ReadConsoleOutputW
FreeLibrary

user32

GetMessageW
TranslateMessage
DispatchMessageW
RegisterClassW
CreateWindowExW
DefWindowProcW
KillTimer
SetWindowLongW
GetKeyboardType
DestroyWindow
VkKeyScanW
MapVirtualKeyW
SetRectEmpty
GetWindowLongW
PostMessageW
IsCharAlphaW
wsprintfA
IsCharAlphaNumericW
wsprintfW
LoadStringW
MessageBeep

wsock32

WSAStartup
WSACleanup
socket
bind
closesocket
setsockopt
connect
WSAAsyncSelect
recv
send
getservbyport
ntohs
gethostbyaddr
htonl
inet_addr
gethostbyname
WSAGetLastError
ioctlsocket
getservbyname
htons

security

AcquireCredentialsHandleW
QuerySecurityPackageInfoW
InitializeSecurityContextW

imm32

ImmGetContext
ImmSetCompositionFontW
ImmSetCompositionWindow
ImmReleaseContext

ole32

CoCreateInstanceEx
CoInitializeEx

gdi32

TranslateCharsetInfo

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d50b43d46ba584aa201c39ff5ad67261

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

user32

wsock32

security

imm32

ole32

gdi32

Sections

.text Size: 47KB - Virtual size: 46KB

.data Size: 6KB - Virtual size: 113KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 47KB - Virtual size: 46KB

.data
Size: 6KB - Virtual size: 113KB

.rsrc
Size: 14KB - Virtual size: 14KB