601ee58abc0f700f3308e2f05ae36bd7feb4f1e7c61d23152303f3f8841ee747

Sharing

Copy URL

Twitter E-mail

General

Target

601ee58abc0f700f3308e2f05ae36bd7feb4f1e7c61d23152303f3f8841ee747
Size

146KB
MD5

1ff5778798eceba67a28c8449d842c90
SHA1

cbebac34543f23c45e6df0eb7d36a0032a6379fa
SHA256

601ee58abc0f700f3308e2f05ae36bd7feb4f1e7c61d23152303f3f8841ee747
SHA512

7d83a0b17f1fccf3437e02c935195fecfc2b3f43951ac02cfbfef5e2b5842497281d4838d40ae2f7de3d92005160ff26635042ec2a07e0fc7afde7c1be6c997d
SSDEEP

3072:qBkXbzdNNC/7VFH1NNA56UaqB26AhmBNbP2zqWZBuzaKLnuY7d:qBAzdNmVRPMB26AhmrbWqWZBuzfLn7h

Score

N/A

Malware Config

Signatures

Files

601ee58abc0f700f3308e2f05ae36bd7feb4f1e7c61d23152303f3f8841ee747
.exe windows x86

794bbda945636d9cae439c80f0a85926

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
MapViewOfFile
SetCurrentDirectoryA
GetModuleHandleW
HeapAlloc
HeapCreate
HeapDestroy
GetProcessHeap
HeapReAlloc
HeapSize
HeapFree
FindResourceA
LoadResource
SizeofResource
LockResource
FreeResource
GetStringTypeW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetVersion
CreateFileW
ReadFile
WriteFile
CloseHandle
IsBadReadPtr
IsDebuggerPresent
CreateEventA
CreateEventW
SetEvent
ResetEvent
CreateMutexA
ReleaseMutex
OpenMutexA
WaitForMultipleObjects
GetTempFileNameA
FindFirstFileW
FindNextFileW
FindClose
GetStringTypeA
CreateFileA
GetFileSize
SetEndOfFile
SetHandleCount
SetFileAttributesA
VirtualFree
TlsAlloc
TlsGetValue
TlsFree
CreateThread
GetCurrentThreadId
GetCurrentThread
ResumeThread
SetThreadPriority
ExitThread
TerminateThread
FindFirstFileA
FindNextFileA
GetDiskFreeSpaceA
FileTimeToDosDateTime
WaitForSingleObject
GetLocaleInfoW
GetStdHandle
CompareStringA
SetFileTime
GetCPInfo
CopyFileA
GetConsoleMode
FindResourceW
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
LoadLibraryA
LoadLibraryW
GetProcAddress
RtlUnwind
EnumCalendarInfoA
GlobalFree
GetExitCodeThread
GetModuleFileNameA
SetThreadLocale
GetSystemDefaultLCID
GlobalAlloc
LoadLibraryExA
LoadLibraryExW
OutputDebugStringA
FileTimeToLocalFileTime
lstrcatA
InterlockedDecrement
GlobalReAlloc
GetStartupInfoA
GetExitCodeProcess
GetTickCount
VirtualAlloc
DisableThreadLibraryCalls
GetUserDefaultLangID
GetModuleFileNameW
LocalFree
MulDiv
MultiByteToWideChar
CreateDirectoryA
WritePrivateProfileStringA
TlsSetValue
CreateProcessW
GetSystemDirectoryA
GetStartupInfoW
GetFileTime
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetFileAttributesW
QueryPerformanceCounter
GetLocaleInfoA
OpenProcess
FlushFileBuffers
FileTimeToSystemTime
SetFilePointer
MoveFileA
GetOEMCP
GetSystemTime
GetCurrentProcessId
GetEnvironmentStringsW
SystemTimeToFileTime
GetFullPathNameA
lstrcmpA
GetThreadLocale
lstrcmpiA
CreateProcessA
GetModuleHandleA
lstrcmpiW
LCMapStringW
lstrlenA
lstrcpynA
WriteConsoleA
SetErrorMode
GetLastError
InterlockedIncrement
FreeEnvironmentStringsW
VirtualProtect
GetStringTypeExA
IsValidCodePage
SetLastError
lstrlenW
DeleteFileW

msvcrt

perror
wcstoul
_open
_lseek
memcpy
__badioinfo
_fdopen
_ismbblead
swprintf
_vsnwprintf
_setmode
_purecall
wcscat
_wtol
wcsrchr
_iob
_ultoa
_lseeki64
exit
qsort
_mbscmp
__p___initenv
_onexit
rename
calloc
_get_osfhandle
wcsncmp
_exit
localtime
_mbsicmp
_fileno
fputc
longjmp
floor
fclose
strncat
_wcsicmp
towlower
atexit
strtok
sscanf
strtol
__mb_cur_max
__initenv
iswdigit
towupper
_ftol
strtoul
_getcwd
vsprintf
wcsncpy
tolower
wcstombs
strcspn
strchr
__set_app_type
_isctype
_putenv
_strnicmp
wcstol
_stricmp
strcat
fgets
__pioinfo
_itoa
_wcsupr
_wcsnicmp
_pipe
memchr
remove
fwrite
strrchr
wcschr
_kbhit
strncpy
strstr
_strcmpi
_errno
isspace
isdigit
swscanf
_osver
_lock
sin
fflush
atoi
_getpid
__lc_codepage
strcmp
pow
wcslen
localeconv
_assert
_open_osfhandle
time
strspn
_XcptFilter
_wtoi
_unlock
__setusermatherr
_vsnprintf
cos
memmove
memset
getenv
_utime
_strdup
_mbsrchr
fgetc
wcsstr
fputs
_snwprintf
memcmp
__CxxFrameHandler
bsearch
setlocale
printf
_fstat
fsetpos
atof
_filbuf
iswspace
_umask
isleadbyte
strlen
_chmod
ftell
strncmp
_c_exit
ctime
_CIsqrt
_beginthreadex
_dup2
puts
_dup
sqrt
fseek
_mkdir
_filelengthi64
ungetc
isxdigit
strpbrk
_snprintf
_adjust_fdiv
_strlwr
_cexit
_flsbuf
free
_mktemp
__p__fmode
signal
fopen
_amsg_exit
abort
_close
__p__commode
_controlfp
malloc
rand
sprintf
iswctype
_CIpow
_fullpath
_except_handler3
__dllonexit
_isatty
gmtime
_read
_unlink
__getmainargs
_wfopen
wcscmp
clearerr
strerror
_stat
_acmdln
_itow
_pctype
putchar
wcscspn
fprintf
_setjmp
__p__environ
atol
_initterm
rewind
strcpy
_write
_wcslwr
fread
clock

user32

IsWindow
PtInRect
GetWindowLongA
OffsetRect
CreatePopupMenu
GetScrollInfo
EnumThreadWindows
MessageBoxA
TrackPopupMenu
SetClassLongA
RegisterWindowMessageA
SetFocus
DrawTextA
UpdateWindow
CharLowerA
PeekMessageA
GetMenuStringA
CharNextA
SendDlgItemMessageA
RedrawWindow
IsDialogMessageA
wsprintfA
ReleaseCapture
EnumWindows
DrawEdge
LoadIconA
AdjustWindowRectEx
FrameRect
DestroyWindow
GetSystemMenu
GetDesktopWindow
RegisterClipboardFormatA
ShowWindow
IsChild
GetActiveWindow
ReleaseDC
EndPaint
DestroyCursor
DrawFrameControl
SetWindowPos
DefWindowProcA
DestroyMenu
ShowOwnedPopups
OemToCharA
GetFocus
SetWindowsHookExA
CheckMenuItem
GetParent
MapWindowPoints
FillRect
GetDlgItem
LoadBitmapA
EnableMenuItem
IsRectEmpty
CreateMenu
SetCapture
GetForegroundWindow
GetWindowRect
GetMenuItemCount
EmptyClipboard
OpenClipboard
GetWindowPlacement
GetTopWindow
GetMessageA
GetMessagePos
GetIconInfo
GetMenuState
SetMenu
UnhookWindowsHookEx
SetCursor
SetScrollInfo
GetDCEx
InsertMenuA
GetWindow
KillTimer
CallWindowProcA
RemovePropA
GetClassInfoA
GetSysColor
SetWindowPlacement
GetClientRect
DrawIcon
SetWindowLongA
GetCapture
SetForegroundWindow
WaitMessage
InvalidateRect
GetScrollPos
GetScrollRange
IntersectRect
IsWindowEnabled
DialogBoxParamA
GetMenu
InflateRect
SetClipboardData
LoadStringA
ScrollWindow
EnableWindow
IsWindowVisible
ClientToScreen
RegisterClassA
MessageBeep
SetRect
EndDialog
SetPropA
GetKeyState
GetSysColorBrush
GetDC
RemoveMenu
SetScrollRange
SetTimer
GetSystemMetrics
DestroyIcon
GetMenuItemID
SetScrollPos
DrawIconEx
GetKeyboardType
CallNextHookEx
PostMessageA
EqualRect
DrawMenuBar
DeleteMenu
SetActiveWindow
GetClassNameA
ScreenToClient
IsIconic
GetWindowTextA
GetWindowThreadProcessId
GetSubMenu
SendMessageA
BeginPaint
DispatchMessageA
FindWindowA
ShowCursor
TranslateMessage
GetWindowDC
GetCursorPos
InsertMenuItemA
IsZoomed
CreateWindowExA

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

794bbda945636d9cae439c80f0a85926

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 54KB - Virtual size: 54KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 79KB - Virtual size: 78KB

.rsrc Size: 1KB - Virtual size: 4KB

.text
Size: 54KB - Virtual size: 54KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 79KB - Virtual size: 78KB

.rsrc
Size: 1KB - Virtual size: 4KB