80129833d1768844a0ac75cef3be9aa07402b493987da7868e4fc4993aacf1c9

Sharing

Copy URL Twitter E-mail

General

Target

80129833d1768844a0ac75cef3be9aa07402b493987da7868e4fc4993aacf1c9
Size

25KB
MD5

c4d92f38c97551f24f5c086508d5035b
SHA1

9f2efeb0b3823ff329b9bcf32e3c7bdc05de73c4
SHA256

80129833d1768844a0ac75cef3be9aa07402b493987da7868e4fc4993aacf1c9
SHA512

ed299ed09a207dde920451761789fec8becc34f6387a5ac83a930e6421128ead324aaef5c00866a88161e38d0b12f104e5c503f817a5613ff282850023cd4aea
SSDEEP

384:I33M9rNJO4bKvTXiNbtoSDVqQKs6rQjSAFh0RtGdF0u8QDF54yRs0f9lgt9n:43SrNXK7XUok3KVOSAFhTD60f7Un

Score

N/A

Malware Config

Signatures

Files

80129833d1768844a0ac75cef3be9aa07402b493987da7868e4fc4993aacf1c9
.exe windows x86

97575080e8a24edcf79bcbd221da24ef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ExtTextOutA
GetTextExtentPointA
SelectPalette
RealizePalette
GetStockObject
GetDeviceCaps
UnrealizeObject
DeleteDC
CreateSolidBrush
GetSystemPaletteEntries
CreateFontIndirectA
CreateDIBitmap
MoveToEx
CreatePen
SelectClipRgn
GetObjectA
LineTo
CreateCompatibleDC
CreatePalette
BitBlt
CreateRectRgn
RestoreDC
SelectObject
SaveDC
SetTextColor
DeleteObject

kernel32

SetFilePointer
GetLastError
SetConsoleCursorInfo
SetStdHandle
SetFileTime
GetConsoleOutputCP
FindCloseChangeNotification
EnterCriticalSection
CompareStringA
ExpandEnvironmentStringsA
LocalFileTimeToFileTime
CreateMutexA
InitializeCriticalSection
GetCurrentThreadId
MapViewOfFile
ReleaseMutex
GetDiskFreeSpaceA
SystemTimeToFileTime
GetCurrentDirectoryA
GetVersionExA
SetConsoleActiveScreenBuffer
FileTimeToLocalFileTime
WriteFile
GetModuleFileNameA
DeleteFileA
FindFirstChangeNotificationA
UnmapViewOfFile
GetFileAttributesA
InterlockedIncrement
WriteConsoleInputW
GetLogicalDrives
GetStdHandle
FileTimeToDosDateTime
SetEndOfFile
FindFirstFileA
GetFullPathNameA
GetComputerNameA
GetModuleHandleA
FreeConsole
SetFileApisToOEM
GetVolumeInformationA
WriteConsoleOutputW
CreateFileA
ReadFile
SetFileApisToANSI
ReadConsoleInputA
GetConsoleMode
RaiseException
PeekConsoleInputW
SetConsoleCP
GetSystemTime
SearchPathA
IsBadWritePtr
GetConsoleCursorInfo
WaitForSingleObject
lstrcmpiA
SetErrorMode
SetLastError
ReadConsoleW
DeleteCriticalSection
ReadConsoleA
IsBadCodePtr
CopyFileA
LoadLibraryA
WaitForMultipleObjects
SetCurrentDirectoryA
GetNumberFormatA
SetConsoleCursorPosition
QueryDosDeviceA
SetConsoleOutputCP
GetFileType
FormatMessageA
InterlockedDecrement
RemoveDirectoryA
AllocConsole
CreateFileMappingA
MoveFileA
FindClose
LeaveCriticalSection
GetFileTime
GetShortPathNameA
FlushConsoleInputBuffer
GlobalMemoryStatus
FlushFileBuffers
BackupWrite
LoadLibraryExA
SetConsoleTitleA
SetConsoleTextAttribute
MoveFileExA
VirtualAlloc
CreateDirectoryA
CreateFileW
ReadConsoleOutputW
GetConsoleScreenBufferInfo
TerminateProcess
GetCompressedFileSizeA
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetConsoleMode
IsBadReadPtr
FreeLibrary
CreateProcessA
GetConsoleCP
DefineDosDeviceA
ReadConsoleOutputA
SetConsoleCtrlHandler
FindNextFileA
GetFileInformationByHandle
PeekConsoleInputA
GetLocaleInfoA
WriteConsoleOutputA
SetEnvironmentVariableA
GetEnvironmentVariableA
GetFileSize
SetConsoleScreenBufferSize
GetLargestConsoleWindowSize
SetConsoleWindowInfo

user32

GetWindowRect
EndDialog
ReleaseDC
GetDlgItem
GetSystemMetrics
GetClientRect
EnableWindow
LoadStringW
MessageBoxA
GetDC
TranslateMessage
ShowWindow

rpcrt4

NdrAsyncClientCall
MesDecodeIncrementalHandleCreate
NDRCContextMarshall
DllGetClassObject
MesInqProcEncodingId
CreateStubFromTypeInfo
NdrByteCountPointerFree
NdrClientInitialize
NdrAllocate
CStdStubBuffer_CountRefs
NDRSContextMarshallEx
MesHandleFree
NdrByteCountPointerUnmarshall
NDRcopy
NDRCContextBinding
NdrConformantStructBufferSize
MesEncodeFixedBufferHandleCreate
NdrAsyncServerCall
NDRSContextMarshall
MesBufferHandleReset
MesIncrementalHandleReset
DceErrorInqTextW
DllRegisterServer

ws2_32

accept
send
recv
WSAStartup
WSACleanup
socket
WSAGetLastError

crypt32

CertControlStore

version

GetFileVersionInfoSizeW
GetFileVersionInfoA

msvcrt

_wtoi
malloc
_onexit
wcsncpy
_vsnwprintf
wcslen
__dllonexit
wcscpy
fwrite
wcsncmp
_strnicmp
_adjust_fdiv
_initterm
_iob
strtol
free
_except_handler3
_ftol
realloc
_local_unwind2
_itow
_snwprintf
swprintf
wcscmp

ole32

CoAllowSetForegroundWindow
OleGetClipboard
CoDisableCallCancellation
CoBuildVersion
CoCopyProxy
CoCreateGuid
CoCreateObjectInContext
CLIPFORMAT_UserSize
CoAddRefServerProcess
CoDeactivateObject
CoCreateInstanceEx
CoCancelCall
CLIPFORMAT_UserFree
OleInitialize
CoCreateFreeThreadedMarshaler
CLSIDFromOle1Class
BindMoniker
CoCreateInstance
CLSIDFromProgIDEx
CLSIDFromProgID

oleacc

DllCanUnloadNow
DllGetClassObject
GetRoleTextA
CreateStdAccessibleObject
GetStateTextW
AccessibleObjectFromPoint
CreateStdAccessibleProxyW
GetRoleTextW
IID_IAccessibleHandler
LresultFromObject
LIBID_Accessibility
GetStateTextA
AccessibleChildren
AccessibleObjectFromWindow
WindowFromAccessibleObject
CreateStdAccessibleProxyA
IID_IAccessible
ObjectFromLresult
GetOleaccVersionInfo
AccessibleObjectFromEvent
DllUnregisterServer

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97575080e8a24edcf79bcbd221da24ef

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

user32

rpcrt4

ws2_32

crypt32

version

msvcrt

ole32

oleacc

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 6KB - Virtual size: 40KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 6KB - Virtual size: 40KB

.rsrc
Size: 2KB - Virtual size: 1KB