96e9316cc9f419c89c4720cc84883dcc38dc242ffbc757788b140f3d7417d78b

Sharing

Copy URL Twitter E-mail

General

Target

96e9316cc9f419c89c4720cc84883dcc38dc242ffbc757788b140f3d7417d78b
Size

308KB
MD5

f26588b9075cbf522c70762943bb86d1
SHA1

7f396be10e9d705d8c2dbf5293d5e4a299f15d8f
SHA256

96e9316cc9f419c89c4720cc84883dcc38dc242ffbc757788b140f3d7417d78b
SHA512

6bc6c1213b2c71dd4194f13b4e8e3090dbe9e6508273739c795e259295b44b540c0642f2a2bceff630cb58b172dd9a3e025867c20115c607aa464b74192d9ec1
SSDEEP

6144:RiRUlukYgdmHvLg3vhTWjnLxn8B3cWVsUb5dIAmCP961cPXb:RAAqPERqS3tp5d9G0L

Score

N/A

Malware Config

Signatures

Files

96e9316cc9f419c89c4720cc84883dcc38dc242ffbc757788b140f3d7417d78b
.exe windows x86

3246ebb151717462c039848feff59e0f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
EncodePointer
GetModuleFileNameW
GetStdHandle
WriteFile
DecodePointer
ExitProcess
GetModuleHandleW
HeapCreate
IsProcessorFeaturePresent
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
EnterCriticalSection
LoadLibraryW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
Sleep
RtlUnwind
HeapSize
LCMapStringW
MultiByteToWideChar
GetSystemTime
FileTimeToLocalFileTime
LockResource
LoadLibraryA
GetProcAddress
FileTimeToSystemTime
SizeofResource
GetSystemPowerStatus
GetProcessTimes
GetCurrentProcess
LoadResource
FreeResource
FindResourceA
GetEnvironmentStringsW
GetLastError
HeapFree
HeapAlloc
HeapReAlloc
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetStringTypeW

user32

GetWindowRect
GetWindowDC
GetFocus
SetFocus
SetRectEmpty
SetSysColors
TrackPopupMenuEx
SetRect
IntersectRect
AppendMenuW
SystemParametersInfoW
ReleaseDC
GetDesktopWindow
GetSysColor
GetCursorPos
CreatePopupMenu
AppendMenuA
DeferWindowPos
SystemParametersInfoA
BeginDeferWindowPos
AdjustWindowRect
DestroyMenu
EndDeferWindowPos
CopyRect

gdi32

GetRgnBox
SetMapMode
CreateRectRgn
GetTextMetricsA

advapi32

GetUserNameA
InitializeAcl
GetAce
GetAclInformation
GetUserNameW

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 261KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3246ebb151717462c039848feff59e0f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 31KB - Virtual size: 31KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 3KB - Virtual size: 9KB

.rsrc Size: 261KB - Virtual size: 261KB

.text
Size: 31KB - Virtual size: 31KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 3KB - Virtual size: 9KB

.rsrc
Size: 261KB - Virtual size: 261KB