c43589abbc28660a3cb7fae27c4a2f39919856406bdfb15cab27c07921bb88eb

Sharing

Copy URL Twitter E-mail

General

Target

c43589abbc28660a3cb7fae27c4a2f39919856406bdfb15cab27c07921bb88eb
Size

168KB
MD5

f16c135563b9dfe0891c024accf847d4
SHA1

ad073fc90c36cc2057ef2f498f61ab0121d68e8a
SHA256

c43589abbc28660a3cb7fae27c4a2f39919856406bdfb15cab27c07921bb88eb
SHA512

07ecf364e92eea36f69903408e1fdbebe7811fbb2b5a4cd9b269d2dec0fd68651a30afa48ddd8fbed03012866d24c6cc416192ab5f7e78d2c811ae9ffd5464fe
SSDEEP

3072:IBz4lMwLnn0gRfiTV9Ma1Wxh8OatpNz8Dn+rRpMYAhGTvVf9CyW:Yz4lMYDRfCKaEb87Nz8D+1pXAhknCy

Score

N/A

Malware Config

Signatures

Files

c43589abbc28660a3cb7fae27c4a2f39919856406bdfb15cab27c07921bb88eb
.exe windows x86

c486806cd6e8407e615a03bbedb96066

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
GetTickCount
GetEnvironmentStringsW
VirtualAlloc
GetModuleHandleA
WriteFileEx
TryEnterCriticalSection
LockResource
CompareStringW
GlobalFree
ReadFileEx
DeleteFileW
WaitForMultipleObjectsEx
CloseHandle
lstrlenA
GetFileAttributesW
InterlockedExchange
SetFilePointer
DeleteFileA
GetThreadLocale
GetVersionExA
SleepEx
GlobalLock
FormatMessageW
WaitForSingleObject
GetFileAttributesA
lstrlenW
SetErrorMode
GlobalAlloc
CreateEventW
SetStdHandle
CreateEventA
GlobalUnlock
RegisterWaitForSingleObject
SizeofResource
LoadResource
FormatMessageA
CompareStringA
FreeLibrary
GetSystemInfo
HeapDestroy
WaitForSingleObjectEx
GetStartupInfoA

user32

DestroyWindow
GetKeyState
MoveWindow
DrawFocusRect
ShowWindowAsync
SetWindowLongW
InflateRect
AdjustWindowRectEx
SetWindowLongA
OffsetRect
ClientToScreen
ReleaseCapture
UnregisterClassA
SetCapture
LoadStringA
GetCursorPos
CreateWindowExA
GetForegroundWindow
LoadCursorW
DefWindowProcW
SetMenuItemInfoW
TranslateMessage
GetWindowTextW
GetWindowWord
SetMenuItemBitmaps
DestroyIcon
AllowSetForegroundWindow
GetActiveWindow
DestroyMenu
PostMessageW
GetMenuStringW
PtInRect
SetActiveWindow
SetMenuItemInfoA
GetMenuItemCount
MessageBeep
DefWindowProcA
RegisterClassA
GetClientRect
LoadIconW
GetMenu
SetWindowPos
SendMessageA
CheckMenuItem
CreateWindowExW
SetWindowTextW
SetWindowTextA
ReleaseDC
PostMessageA
GetSubMenu
TrackPopupMenu

ole32

CoRevokeMallocSpy
CoRegisterChannelHook
CoSuspendClassObjects
CoTaskMemRealloc
CoSetProxyBlanket
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
CoTreatAsClass
CoRevokeClassObject
CoSwitchCallContext
CoReleaseMarshalData
CoRegisterMessageFilter
CoRegisterPSClsid
CoRegisterSurrogate
CoRevokeInitializeSpy
CoReleaseServerProcess
CoResumeClassObjects
CoRevertToSelf
CoRegisterMallocSpy
CoRegisterClassObject

shell32

SHBindToParent

msvcrt

__setusermatherr
_except_handler3
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
_onexit
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
__dllonexit

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 227KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c486806cd6e8407e615a03bbedb96066

Headers

File Characteristics

Imports

kernel32

user32

ole32

shell32

msvcrt

Sections

.text Size: 12KB - Virtual size: 8KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 128KB - Virtual size: 227KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 12KB - Virtual size: 8KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 128KB - Virtual size: 227KB

.rsrc
Size: 20KB - Virtual size: 19KB