f6633863960d489b4fa3c615ac7145ee033f8e6005f641b5e870b9e66428c5fc

Sharing

Copy URL Twitter E-mail

General

Target

f6633863960d489b4fa3c615ac7145ee033f8e6005f641b5e870b9e66428c5fc
Size

2.2MB
MD5

d260d4cc4e32420afeacb56ceb2cd2df
SHA1

a0b085d8e0d5030c132a20b2fef83bc6617deb08
SHA256

f6633863960d489b4fa3c615ac7145ee033f8e6005f641b5e870b9e66428c5fc
SHA512

4937d1d25f0140d5c5d1f68e16fc0dd2b8a7c7a773bba80a0e480c9ea0318574a251ac0f31326815221db413d3f9a23364551033464e37b3d1864dae5a0c019a
SSDEEP

24576:4E4V5M8Mglj+9/YMJvleLaG7uaJzoflQY3WOVD3kUZwS5v2a1LX:4Ew5W9tJ9e2G7ua+QY3WOVw2wS5+a1LX

Score

N/A

Malware Config

Signatures

Files

f6633863960d489b4fa3c615ac7145ee033f8e6005f641b5e870b9e66428c5fc
.exe windows x86

0deea4765e2fa79dd8f7c50f1dc1b568

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
CreateProcessA
GetPriorityClass
GetCurrentProcess
ResumeThread
GetCurrentThreadId
CreateEventA
SetEvent
GetExitCodeThread
GetStartupInfoA
ExitProcess
GetCommandLineA
InitializeCriticalSection
DeleteCriticalSection
DebugBreak
HeapAlloc
GetExitCodeProcess
HeapReAlloc
HeapFree
CreateThread
LeaveCriticalSection
EnterCriticalSection
GetVersionExA
WaitForMultipleObjects
GetFileAttributesA
GetDriveTypeA
lstrcpynA
ReadFile
GetFileSize
GetLastError
CallNamedPipeA
GetUserDefaultLangID
EnumResourceNamesA
lstrcmpiA
lstrlenW
GetTempPathA
GetTempFileNameA
FindResourceA
SizeofResource
LoadResource
LockResource
SetFileAttributesA
GetModuleHandleA
SetLastError
GetWindowsDirectoryA
GetShortPathNameA
CreateFileA
WriteFile
CloseHandle
DeleteFileA
MoveFileA
GetModuleFileNameA
lstrcpyA
CopyFileA
LoadLibraryA
GetProcAddress
WideCharToMultiByte
FreeLibrary
lstrlenA
GetProcessHeap
lstrcatA

user32

wvsprintfA
PostMessageA
BeginDeferWindowPos
ScreenToClient
DeferWindowPos
EndDeferWindowPos
GetSystemMetrics
SetWindowTextA
GetDC
ReleaseDC
GetSysColor
LoadStringA
GetClientRect
KillTimer
MsgWaitForMultipleObjects
SetCursor
SetWindowLongA
GetWindowTextA
EndDialog
SetTimer
InvalidateRect
UpdateWindow
DefWindowProcA
RedrawWindow
EnableWindow
SetForegroundWindow
wsprintfA
SendMessageA
SendDlgItemMessageA
GetWindowRect
PeekMessageA
TranslateMessage
DispatchMessageA
GetKeyboardType
LoadCursorA
CharNextA
MapWindowPoints
SetWindowPos
LoadImageA
GetDlgItem

gdi32

GetDeviceCaps
CreateHalftonePalette
SelectPalette
UpdateColors
SetTextColor
CreateFontIndirectA
CreateCompatibleDC
GetObjectA
DeleteObject
RealizePalette
BitBlt
DeleteDC
SelectObject

advapi32

RegFlushKey
OpenSCManagerA
OpenServiceA
QueryServiceStatus
CloseServiceHandle
RegEnumKeyExA
RegDeleteKeyA
RegQueryInfoKeyA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA

shell32

ShellExecuteA
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA
StrRChrA

ole32

CoUninitialize
CoCreateInstance
CoInitialize
CoTaskMemFree

oleaut32

SysAllocString
VariantInit
VariantClear

wininet

InternetCloseHandle
InternetOpenA
InternetOpenUrlA
InternetReadFile

Sections

.text
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0deea4765e2fa79dd8f7c50f1dc1b568

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

wininet

Sections

.text Size: 20KB - Virtual size: 18KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 2.1MB - Virtual size: 2.1MB

.text
Size: 20KB - Virtual size: 18KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 2.1MB - Virtual size: 2.1MB