b854e484dcdd72c239586b778d2162e84c25e872de2976f2879851b0f9dbfa82

Sharing

Copy URL

Twitter E-mail

General

Target

b854e484dcdd72c239586b778d2162e84c25e872de2976f2879851b0f9dbfa82
Size

254KB
MD5

b065e71fec968266d895123a7ee431d2
SHA1

21108c105560ca33f3c01ad826b8d766195ea74c
SHA256

b854e484dcdd72c239586b778d2162e84c25e872de2976f2879851b0f9dbfa82
SHA512

93b831cc46f9472bcec3506e1594a32155d6497101cfa49143d79f1cb7d2bb41abec50f5cef6da09c7f3d5c1ec6b3456ca831af87fc1593e3a9bbfddb1c5bacb
SSDEEP

6144:2Zx4wXije2Pyp4qHv5e4xrnMdyaIlrAB/M+IJGSC8e:2Zx3XiLap42xDXFrAJMHGt

Score

N/A

Malware Config

Signatures

Files

b854e484dcdd72c239586b778d2162e84c25e872de2976f2879851b0f9dbfa82
.exe windows x86

7057a76d4e9efb2abd097bde8b2536aa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
VerifyVersionInfoW
FreeConsole
GetCurrentDirectoryW
GetConsoleWindow
GetModuleHandleW
GetNumberOfConsoleInputEvents
GetCurrentThreadId
DisableThreadLibraryCalls
VerSetConditionMask
lstrlenW
LockResource
CreateIoCompletionPort
GlobalFree
DeleteCriticalSection
SetErrorMode
SetEndOfFile
SetConsoleMode
WriteConsoleW
CreateDirectoryW
EnterCriticalSection
OutputDebugStringW
DeleteFileW
HeapDestroy
CreateMutexW
GetFileSize
SetConsoleActiveScreenBuffer
SetStdHandle
GetUserDefaultUILanguage
GetSystemDirectoryW
LocalAlloc
GetConsoleScreenBufferInfo
SetConsoleWindowInfo
WriteConsoleOutputCharacterW
TerminateThread
FillConsoleOutputCharacterW
SetWaitableTimer
FileTimeToSystemTime
PulseEvent
ReadConsoleInputW
RegisterWaitForSingleObject
WaitForMultipleObjectsEx
GetConsoleMode
SetConsoleScreenBufferSize
FreeLibrary
CloseHandle
GetStdHandle
HeapAlloc
ExitThread
WriteFile
GetWindowsDirectoryW
ProcessIdToSessionId
GetLongPathNameW
IsDebuggerPresent
GetProcessHeap
FlushFileBuffers
SetFilePointer
SetConsoleTitleW
SetConsoleCtrlHandler
CreateFileW
FindFirstFileW
CreateEventW
SizeofResource
PostQueuedCompletionStatus
GetThreadPriority
OpenEventW
WideCharToMultiByte
GetCommandLineW
SetConsoleCursorInfo
VirtualQuery
VirtualFree
ReadFile
UnhandledExceptionFilter
WaitForMultipleObjects
LeaveCriticalSection
GetThreadContext
SetUnhandledExceptionFilter
CancelWaitableTimer
LoadLibraryExW
VirtualAlloc
FindResourceW
CreateConsoleScreenBuffer
EnumUILanguagesW
GetSystemTime
GetProcessTimes
GetSystemInfo
GetTempPathW
GlobalUnlock
GetSystemDefaultUILanguage
GetConsoleCursorInfo
LocalFree
TryEnterCriticalSection
HeapFree
WaitForSingleObject
OpenProcess
ReadProcessMemory
GetFileType
SetThreadPriority
ResetEvent
OpenMutexW
CreateProcessW
LoadResource
GetQueuedCompletionStatus
OpenSemaphoreW
CreateThread
SuspendThread
SystemTimeToFileTime
lstrlenA
SetConsoleTextAttribute
RaiseException
lstrcpyW
ReleaseSemaphore
GetLocalTime
CreateSemaphoreW
GetConsoleTitleW
GlobalAlloc
FormatMessageW
UnregisterWaitEx
GetSystemTimeAsFileTime
HeapSize
GetShortPathNameW
CreateWaitableTimerW
lstrcatW
FillConsoleOutputAttribute
CancelIo
HeapReAlloc
GlobalLock
FindResourceExW
SetConsoleCursorPosition
ReleaseMutex
FindClose
ResumeThread
DuplicateHandle
MoveFileExW
AllocConsole
GlobalSize
FindNextFileW
VirtualAllocEx
IsBadWritePtr

user32

GetMessageW
CreateWindowExW
DispatchMessageW
GetSystemMetrics
DefWindowProcW
GetWindowLongW
TranslateMessage
UnregisterClassW
GetMessageA
IsWindowUnicode
MsgWaitForMultipleObjectsEx
RegisterClassExW
GetClassInfoExW
PeekMessageW
SetWindowLongW
wsprintfW
DispatchMessageA
PostMessageW
CharPrevW
DestroyWindow
CharNextW
PostThreadMessageW

ole32

CoUninitialize
CoInitializeEx
OleSaveToStream
CoCreateGuid
OleLoadFromStream
CreateStreamOnHGlobal
GetHGlobalFromStream
CoCreateInstance
IIDFromString
StringFromGUID2

oleaut32

SafeArrayPutElement
SafeArrayCreateVector
SetErrorInfo
SafeArrayRedim
SafeArrayAccessData
SafeArrayUnaccessData
GetErrorInfo
SysAllocString
SysStringByteLen
SysFreeString
SafeArrayLock
SafeArrayCreate
VariantInit
SysAllocStringByteLen
VariantChangeType
SafeArrayPtrOfIndex
SafeArrayGetElement
VariantClear
SafeArrayUnlock
VariantCopyInd
CreateErrorInfo

userenv

GetAllUsersProfileDirectoryA
GetAppliedGPOListW
GetAppliedGPOListA
GetProfileType
RsopFileAccessCheck

iasacct

DllUnregisterServer

Sections

.text
Size: 222KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zOxeIh
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rxrBol
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CtsYXM
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dlvdR
Size: 512B - Virtual size: 153B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qvITWxq
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.OnLhVxq
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.JOwKniy
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7057a76d4e9efb2abd097bde8b2536aa

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

userenv

iasacct

Sections

.text Size: 222KB - Virtual size: 222KB

.zOxeIh Size: 2KB - Virtual size: 1KB

.rxrBol Size: 2KB - Virtual size: 2KB

.CtsYXM Size: 1KB - Virtual size: 1KB

.rdata Size: 5KB - Virtual size: 41KB

.dlvdR Size: 512B - Virtual size: 153B

.qvITWxq Size: 3KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 152KB

.rsrc Size: 2KB - Virtual size: 2KB

.OnLhVxq Size: 1KB - Virtual size: 1KB

.JOwKniy Size: 3KB - Virtual size: 3KB

.text
Size: 222KB - Virtual size: 222KB

.zOxeIh
Size: 2KB - Virtual size: 1KB

.rxrBol
Size: 2KB - Virtual size: 2KB

.CtsYXM
Size: 1KB - Virtual size: 1KB

.rdata
Size: 5KB - Virtual size: 41KB

.dlvdR
Size: 512B - Virtual size: 153B

.qvITWxq
Size: 3KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 152KB

.rsrc
Size: 2KB - Virtual size: 2KB

.OnLhVxq
Size: 1KB - Virtual size: 1KB

.JOwKniy
Size: 3KB - Virtual size: 3KB