b9d06d903893318f16968185fbe216f2297ef450fccc79fbc9845b0a3f76375c

Sharing

Copy URL

Twitter E-mail

General

Target

b9d06d903893318f16968185fbe216f2297ef450fccc79fbc9845b0a3f76375c
Size

159KB
MD5

ae1507720d5baf3b97d8b76f138f8dd8
SHA1

75210987d8ea4815e97ba06b48e40701dfc1c683
SHA256

b9d06d903893318f16968185fbe216f2297ef450fccc79fbc9845b0a3f76375c
SHA512

1b97df282e744951b28fb6335081065cf46ad2dcf3b7ed4d7c4f352f680c9ef6db983c354929d51e40102cfe1ac66c4e4b61b1143b37834a34d2c2d80a86ce67
SSDEEP

3072:Syk5EaqZtzEjAB6vHbWMAMZ0fNaeBXU+Ljaa:8q3QvHbWMHZ0VlJUqB

Score

N/A

Malware Config

Signatures

Files

b9d06d903893318f16968185fbe216f2297ef450fccc79fbc9845b0a3f76375c
.exe windows x86

ee7ed6516ec4c3148fc1bf70466622e3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
WideCharToMultiByte
LCMapStringW
LoadLibraryA
LCMapStringA
VirtualProtect
InterlockedExchange
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
RtlUnwind
VirtualFree
VirtualAlloc
SetHandleCount
FreeEnvironmentStringsA
GetSystemInfo
GetStringTypeW
GetStringTypeA
GetStdHandle
GetOEMCP
GetLocaleInfoA
GetFileType
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetCPInfo
GetACP
FreeEnvironmentStringsW
GetProcAddress

user32

LoadCursorA
MessageBoxA
LoadStringA
ExitWindowsEx
CharPrevA
CharNextA
LoadIconA

gdi32

GetStockObject

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegSetValueExA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegCreateKeyA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
GetTokenInformation
FreeSid
EqualSid
AllocateAndInitializeSid
AdjustTokenPrivileges
RegOpenKeyA
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueA
RegQueryValueExA
RegSetValueA
RegEnumValueA

shell32

ShellAboutA
ExtractAssociatedIconA
DragQueryFileA
DragAcceptFiles
DragFinish
ShellExecuteExA

wininet

CreateUrlCacheEntryA
DeleteUrlCacheEntry
CommitUrlCacheEntryA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee7ed6516ec4c3148fc1bf70466622e3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

wininet

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 106KB - Virtual size: 106KB

.rsrc Size: 26KB - Virtual size: 26KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 106KB - Virtual size: 106KB

.rsrc
Size: 26KB - Virtual size: 26KB