e666255c7570c75a8827eb3472fda80f3562510f843fa3c23d7d2ff43785a8bd

Sharing

Copy URL Twitter E-mail

General

Target

e666255c7570c75a8827eb3472fda80f3562510f843fa3c23d7d2ff43785a8bd
Size

156KB
MD5

74f4e67e1202b61978136e56461e7e09
SHA1

7b6bf83aa5a8a167575de5ff84baa120e6ae320f
SHA256

e666255c7570c75a8827eb3472fda80f3562510f843fa3c23d7d2ff43785a8bd
SHA512

61396a8a9291f7b62f1f752e5263a1c7188cc72e8b1594736c4a2444d2860f481d2a7a5fa37dfd907bd8f415d4a1b7ccda416391baf239eec9c38332638843f9
SSDEEP

3072:e+5I4aBc53rhiC9pdTvfqRPEnKZxuxtcl7DD3BtQC1a/:eIrxvRfqRPESutu7DDxt3A/

Score

N/A

Malware Config

Signatures

Files

e666255c7570c75a8827eb3472fda80f3562510f843fa3c23d7d2ff43785a8bd
.exe windows x86

ef164725c79a111354648c4675051085

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlFillMemory
IsDBCSLeadByte
WriteProfileSectionW
FindResourceW
GlobalUnfix
FindFirstFileExW
OpenEventA
DeleteVolumeMountPointW
WriteFile
FindNextVolumeMountPointW
SetProcessAffinityMask
IsProcessorFeaturePresent
GetConsoleScreenBufferInfo
IsBadStringPtrA
lstrcpyA
AllocConsole
IsSystemResumeAutomatic
RtlMoveMemory
GetThreadPriorityBoost
GetDiskFreeSpaceA
CreateSemaphoreA
WriteConsoleW
GetProfileStringW
ReadConsoleOutputCharacterW
GetFileSizeEx
GetCalendarInfoW
RemoveDirectoryA
GetLocaleInfoA
GetExitCodeThread
SetThreadExecutionState
VirtualAllocEx
GetCommMask
SetConsoleScreenBufferSize
UnlockFile
SetVolumeLabelW
CreateThread
lstrlenA
ExitThread
DeleteTimerQueueTimer
MapUserPhysicalPagesScatter
HeapFree
FreeEnvironmentStringsA
GetLastError
WaitForSingleObjectEx
GetModuleHandleA
FileTimeToSystemTime
CopyFileExW
EnumResourceTypesA
GetConsoleDisplayMode
AddAtomW
CreateProcessA
SetCommConfig
SetHandleCount
GetLogicalDriveStringsW
CreateRemoteThread
GetCommTimeouts
GetOEMCP
SetConsoleCursor
MoveFileA
GlobalFindAtomA
GetTickCount
EnumResourceLanguagesA
GetEnvironmentVariableA
QueueUserWorkItem
GetStartupInfoA
CreateHardLinkW
GetCompressedFileSizeA
IsBadHugeWritePtr
HeapValidate
GetQueuedCompletionStatus
ScrollConsoleScreenBufferA

msvcrt

_strupr
_write
strchr
_spawnvp
setbuf
_adj_fdivr_m16i
_setjmp
_wgetcwd
_fputchar
_mbsncpy
_controlfp
raise
_mbsspnp
_wfullpath
_wfindnext
isupper
_cgets
_utime
strftime
_iob
_wstati64
_heapwalk
__getmainargs
strcpy
_ultow
abs
_chgsign
_findnext64
_chdir
_locking
_spawnl
sinh
_wunlink
_getch
wcstoul
strtoul
__set_app_type
iswxdigit
_sys_nerr
_ismbbkalnum
gmtime
_aligned_offset_realloc
_mbsnbcnt
_initterm
sqrt
_XcptFilter
_wspawnle
_exit
_splitpath
_wexecvp
feof
_aexit_rtn
_sleep
__setusermatherr
_ismbcl2
_wmkdir
_putw
_get_osfhandle
_adjust_fdiv
exit
_mbctombb
_creat
_wgetdcwd
_safe_fprem
_aligned_malloc
_callnewh
__p__fmode
_resetstkoflw
_acmdln
__p__commode
_except_handler3
_aligned_offset_malloc
_wremove
_wexecl
_findnexti64

user32

RegisterClipboardFormatA
LoadCursorFromFileW
ReplyMessage
DdeCreateStringHandleA
GetScrollInfo
LoadKeyboardLayoutW
LoadIconW
GetLastInputInfo
EnumWindows
GetWindowPlacement
GetMonitorInfoW
LookupIconIdFromDirectory
wvsprintfW
InflateRect
SetProcessWindowStation
GetMenuItemID
GetClassInfoExW
MessageBoxExW
mouse_event
EnumClipboardFormats
SetLastErrorEx
LoadImageW
CreateAcceleratorTableA
SwapMouseButton
GetKeyboardLayoutNameA
GetTabbedTextExtentW
UpdateWindow
CharUpperBuffA
UnpackDDElParam
wvsprintfA
DdeDisconnect
EndDialog
DrawFrame
DdeQueryNextServer
GetInputDesktop
DialogBoxIndirectParamA
ValidateRgn
MsgWaitForMultipleObjectsEx
CharNextA
EnumDisplayDevicesA
IsWindowUnicode
ShowWindowAsync
EnumPropsW
GetMessageW
LockSetForegroundWindow
GetAsyncKeyState
SetCaretBlinkTime
CloseClipboard
IntersectRect
CharToOemBuffW
ChangeMenuW
DdeConnect
EnumDisplayMonitors
SendDlgItemMessageW
IsRectEmpty
DefWindowProcW
EqualRect
GetDC
SetClassWord
CharPrevA
DeferWindowPos

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef164725c79a111354648c4675051085

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 76KB - Virtual size: 76KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 512B - Virtual size: 76KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 76KB - Virtual size: 76KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 512B - Virtual size: 76KB

.rsrc
Size: 9KB - Virtual size: 8KB