9ba865bb7ba544c525530291d89d554b1ca5927ce964fd91d4c49226cd51cfd7

Sharing

Copy URL Twitter E-mail

General

Target

9ba865bb7ba544c525530291d89d554b1ca5927ce964fd91d4c49226cd51cfd7
Size

708KB
MD5

2b784f6242dc7e81881124bc0f27f960
SHA1

bc88694770c1b42fcad87fe4f8277a502e4a5a78
SHA256

9ba865bb7ba544c525530291d89d554b1ca5927ce964fd91d4c49226cd51cfd7
SHA512

ab2cdd15a4d71130ca634aad0a65a59fdf3c23168059e5d1baf50f10f2a95d232a340b013bf7b80cab85ee18659f158fc06ef4a6fddc24ed3a787861ca325656
SSDEEP

12288:6G9EBfP9cjiugfjjMWc6bxHIDWR3xDaT5dRKc:6G9EdP9c2ugXMgbxoDWXDC5dD

Score

N/A

Malware Config

Signatures

Files

9ba865bb7ba544c525530291d89d554b1ca5927ce964fd91d4c49226cd51cfd7
.exe windows x86

8c7d0adb28ae7274e1c083aa7afc6089

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
ReleaseMutex
FindFirstFileA
FindNextFileA
FindClose
IsBadReadPtr
CreateThread
GetCurrentThreadId
GetCurrentThread
ResumeThread
ExitThread
DeviceIoControl
FindResourceA
FindResourceW
LoadResource
SizeofResource
FreeResource
FindFirstFileW
FindNextFileW
GetFileAttributesA
HeapAlloc
HeapCreate
HeapDestroy
GetProcessHeap
HeapReAlloc
HeapSize
HeapFree
LCMapStringA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetSystemTime
lstrcmpiA
GetShortPathNameA
TerminateThread
UnmapViewOfFile
MapViewOfFile
InterlockedIncrement
lstrlenA
CreateEventA
SetEvent
ResetEvent
SetThreadPriority
GetExitCodeThread
CreateFileW
ReadFile
CloseHandle
LockResource
QueryPerformanceCounter
CreateFileMappingA
LocalAlloc
LoadLibraryA
GetProcAddress
GetStringTypeA
FreeEnvironmentStringsW
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalUnlock
GetStartupInfoW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
LoadLibraryW
lstrcpyA
GetSystemTimeAsFileTime
IsValidCodePage
CreateFileA
SetFileAttributesW
GetExitCodeProcess
FileTimeToSystemTime
lstrlenW
OpenMutexA
GetCurrentProcessId
GetStringTypeExA
FileTimeToDosDateTime
RaiseException
WritePrivateProfileStringA
WriteFile
InterlockedExchange
GetFileTime
UnhandledExceptionFilter
GetCommandLineA
GetCurrentProcess
Sleep
GetEnvironmentStrings
RemoveDirectoryA
GetEnvironmentStringsW
lstrcmpA
FileTimeToLocalFileTime
MoveFileA
GetThreadLocale
GetSystemInfo
GlobalReAlloc
DuplicateHandle
GetSystemDefaultLCID
GlobalHandle
SetHandleCount
OutputDebugStringA
GetDateFormatA
RtlUnwind
GetCommandLineW
GetFileSize
SetEndOfFile
MultiByteToWideChar
FreeEnvironmentStringsA
LocalFileTimeToFileTime
EnumCalendarInfoA
GetModuleHandleA
IsBadCodePtr
WaitForSingleObject
LCMapStringW
GetVersion
SetEnvironmentVariableA
IsDBCSLeadByte
GetSystemDirectoryA
GetFileAttributesW
GlobalLock
WaitForMultipleObjects
GetUserDefaultLangID
lstrcatA
GetVersionExA
GetModuleFileNameW
GetFullPathNameA
VirtualFree
TerminateProcess
GetLocalTime
GetModuleHandleW
GetConsoleMode
LoadLibraryExA
CompareStringA
GetLastError
GetCurrentDirectoryA
ExitProcess
GlobalFree
FlushFileBuffers
VirtualAlloc

msvcrt

fflush
fopen
strcpy
_assert
wctomb
toupper
putchar
strncmp
_mbscmp
longjmp
_getcwd
_setmode
_write
__p__fmode
_dup2
sin
strcmp
puts
__mb_cur_max
fwrite
calloc
wcslen
log
strtol
_fstat
_filelengthi64
__pioinfo
_isatty
fprintf
_vsnwprintf
__initenv
wcsncpy
_isctype
localtime
_fullpath
time
fgetpos
strcspn
atoi
malloc
_stat
fputs
_c_exit
_flsbuf
strpbrk
towupper
isspace
__p__commode
fsetpos
cos
abort
fgets
srand
gmtime
rewind
__p__environ
wcsncmp
_ismbblead
_mbsicmp
memmove
_wtoi
memcpy
towlower
localeconv
wcscmp
_XcptFilter
_read
_strlwr
_onexit
wcschr
_wcslwr
floor
_lseeki64
_iob
__setusermatherr
vsprintf
ctime
_ftol
strlen
_putenv
realloc
qsort
ungetc
clearerr
_lseek
sqrt
sprintf
wcstol
memchr
_except_handler3
rand
wcscat
iswdigit
strspn
_fileno
strncat
_itow
_vsnprintf
wcscspn
strtoul
_beginthreadex
_exit
_purecall
_snprintf
_pctype
_strcmpi
iswspace
_setjmp
atof
swprintf
fseek
_wcsupr
_kbhit
__set_app_type
_wfopen
__lc_codepage
wcstoul
strstr
ceil
pow
isleadbyte
strrchr
_initterm
free
perror
__badioinfo
_unlink
setlocale
remove
_chmod
fclose
strtok
strchr
_itoa
_setjmp3
strncpy
_strdup
memset
_CIpow
rename
iswctype
_getch
_CIsqrt
tolower
atexit
_utime
_getpid
_controlfp
_mktemp
fgetc
signal
_wcsnicmp
ftell
clock
__p___initenv
_get_osfhandle
getenv
_wtol
_open
_wcsicmp
_cexit
_umask
_dup
fread
_filbuf
_errno
__dllonexit
strcat
__CxxFrameHandler
isxdigit
_osver
printf
__getmainargs
wcstombs
atol
_lock
_mbsrchr
_adjust_fdiv
exit
_open_osfhandle
_mkdir
_acmdln
_stricmp
fputc
sscanf
_snwprintf
_ultoa
bsearch
_unlock
isdigit
_strnicmp
_fdopen
_amsg_exit
memcmp

user32

LoadStringA
SetTimer
SendMessageA
DestroyIcon
FindWindowA
GetMenuState
GetClientRect
GetTopWindow
IsWindowVisible
IsRectEmpty
CallWindowProcA
GetPropA
IsDialogMessageA
DrawIcon
DialogBoxParamA
DrawIconEx
EqualRect
SendDlgItemMessageA
EmptyClipboard
GetSysColor
SetWindowTextA
GetScrollRange
GetMenuStringA
TrackPopupMenu
GetSystemMetrics
GetSystemMenu
GetParent
RegisterClipboardFormatA
SetClassLongA
RemoveMenu
ClientToScreen
SetActiveWindow
GetMenuItemID
WinHelpA
CloseClipboard
TranslateMessage
SetScrollPos
GetMenu
DefWindowProcA
GetScrollInfo
ReleaseDC
ReleaseCapture
GetMessagePos
ShowCursor
UnhookWindowsHookEx
KillTimer
DrawEdge
DrawTextA
SetFocus
SystemParametersInfoA
IsWindow
GetWindowRect
SetMenu
GetDC
PostMessageA
EnableWindow
GetWindow
LoadIconA
EnumThreadWindows
CreateWindowExA
DestroyWindow
SetWindowsHookExA
SetScrollInfo
EnumWindows
GetWindowDC
WaitMessage
SetRect
RemovePropA
ShowWindow
SetWindowLongA
FrameRect
GetMessageA
GetWindowThreadProcessId
PeekMessageA
MessageBoxA
DrawMenuBar
EndPaint
CharLowerA
SetCursor
GetCapture
PostQuitMessage
OffsetRect
GetWindowLongA
BeginPaint
MessageBeep
GetIconInfo
GetClassInfoA
GetKeyState
FillRect
CreateMenu
GetForegroundWindow
DrawFrameControl
LoadBitmapA
CreatePopupMenu
DispatchMessageA
RedrawWindow
UpdateWindow
GetActiveWindow
IsWindowEnabled
SetCapture
DeleteMenu
IsZoomed
SetWindowPlacement
InsertMenuA
IsIconic
ScrollWindow
OpenClipboard
OemToCharA
InsertMenuItemA
GetScrollPos
PtInRect
ScreenToClient
GetWindowPlacement
CallNextHookEx
GetDesktopWindow
SetForegroundWindow
GetWindowTextA
RegisterClassA
AdjustWindowRectEx
GetDlgItem
GetCursorPos
GetSubMenu
GetDCEx
EndDialog
WindowFromPoint
GetKeyboardType
SetClipboardData
SetScrollRange
ShowOwnedPopups
SetPropA
LoadCursorA
IsChild
GetMenuItemCount
MapWindowPoints
RegisterWindowMessageA
InvalidateRect
DestroyCursor
SetWindowPos
wsprintfA
InflateRect

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 492KB - Virtual size: 492KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8c7d0adb28ae7274e1c083aa7afc6089

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 55KB - Virtual size: 54KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 1KB - Virtual size: 4KB

Size: 492KB - Virtual size: 492KB

.text
Size: 55KB - Virtual size: 54KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 1KB - Virtual size: 4KB