95d0e56da530f9e7583aace0b1582b0bc81cf581d281ac8660db8472c97e6132

Sharing

Copy URL

Twitter E-mail

General

Target

95d0e56da530f9e7583aace0b1582b0bc81cf581d281ac8660db8472c97e6132
Size

336KB
MD5

05e10100d14d4de285d7052f7405e770
SHA1

452b9671a629f27c3e4250e9b9cd67496927efb3
SHA256

95d0e56da530f9e7583aace0b1582b0bc81cf581d281ac8660db8472c97e6132
SHA512

5be4ff0109430ac37bd369557efc4d33182711e48db5f6df47f4a7d789855534a117de316eddf55883ecc666104ef0fc74bd9d0073d1af9a08cd7b2a59fb82b5
SSDEEP

6144:NBOrpbF0oexMQwQcXjJ/hXqugraIxkzvcBnhrrNE3pOor1UxDKusq12PHIx1:foex3bcXjJ/hFgxkqnh+ZO+TNM2PH

Score

N/A

Malware Config

Signatures

Files

95d0e56da530f9e7583aace0b1582b0bc81cf581d281ac8660db8472c97e6132
.exe windows x86

66f9c173c995123cbe4318ad9df76b93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
InterlockedIncrement
OpenEventW
FindCloseChangeNotification
GetPrivateProfileStringW
EnumCalendarInfoW
GlobalUnlock
CancelWaitableTimer
WriteProfileStringW
GetTimeFormatA
GetOverlappedResult
CreateSemaphoreW
FillConsoleOutputAttribute
DeleteCriticalSection
SetFileApisToOEM
InitializeCriticalSectionAndSpinCount
HeapFree
GetProfileIntW
GetConsoleCursorInfo
GlobalDeleteAtom
SetProcessWorkingSetSize
SetConsoleCtrlHandler
MulDiv
LocalFileTimeToFileTime
QueryPerformanceFrequency
DeleteAtom
GetWindowsDirectoryA
OpenSemaphoreA
BackupRead
FreeEnvironmentStringsW
EnumResourceTypesA
EnumResourceLanguagesA
SetConsoleTitleA
GlobalReAlloc
ExpandEnvironmentStringsA
FormatMessageW
SetConsoleTextAttribute
GetPrivateProfileSectionNamesA
OpenEventA
GetVersionExA
GetCurrentProcess
WriteConsoleA
SetUnhandledExceptionFilter
RemoveDirectoryW
UnmapViewOfFile
GetFileAttributesExA
SizeofResource
GlobalSize
GetCurrentThreadId
UnlockFile
GetQueuedCompletionStatus
HeapAlloc
EnumSystemLocalesA
GetModuleHandleA
IsValidLocale
GetNumberFormatW
lstrcatA
FindNextChangeNotification
Sleep
SetThreadLocale
_lclose
SetConsoleWindowInfo
lstrcmpW
DosDateTimeToFileTime
GetStartupInfoA
GetPrivateProfileStringA
lstrcmpiW
VirtualProtect

user32

GetClassInfoA
SetUserObjectSecurity
UnloadKeyboardLayout
SetSysColors
LoadImageA
CharNextW
SetWindowsHookExA
LoadCursorW
WinHelpW
InsertMenuW
SetThreadDesktop
GetClassLongA
CloseWindow
RegisterWindowMessageA
GetPropW
EnumThreadWindows
ToUnicodeEx
ChangeClipboardChain
DrawIcon
ChildWindowFromPoint
GrayStringW
PostThreadMessageA
GetMenuDefaultItem
GetWindowDC
GetClipboardSequenceNumber
SetDlgItemTextW
SetMenuItemBitmaps
GetMenu
MapVirtualKeyExW
CreateCursor
GetUpdateRect
GetMessageA
CharUpperA
SendDlgItemMessageA
GetClassInfoExW
ToUnicode
SetClipboardData
RegisterDeviceNotificationA
DrawMenuBar
CloseWindowStation
IsIconic
InsertMenuA

gdi32

GetPixel
RectInRegion
PolyPolyline
CreateBrushIndirect
GetStretchBltMode
GetWindowOrgEx
DescribePixelFormat
GetTextExtentPointW
GetCurrentPositionEx
SetPolyFillMode
CreateCompatibleDC

advapi32

NotifyChangeEventLog
RegSetKeySecurity
RegLoadKeyW
InitiateSystemShutdownA
RegUnLoadKeyA
RegDeleteKeyW
CryptEncrypt
ChangeServiceConfigW
LogonUserW
AllocateAndInitializeSid
QueryServiceConfigW
GetAce
GetNamedSecurityInfoA
RegGetKeySecurity

ole32

CoReleaseMarshalData
CoRevertToSelf
StringFromGUID2

oleaut32

SetErrorInfo
VariantCopyInd
SafeArrayRedim
SysAllocStringLen
DispGetIDsOfNames
SafeArrayCreate

shlwapi

PathCompactPathExW
PathCompactPathW
PathGetCharTypeW
SHRegQueryUSValueW
PathIsDirectoryW
PathGetArgsW
PathAppendA
PathRenameExtensionW
PathCombineA
PathParseIconLocationW
SHRegSetUSValueW
StrCmpIW
StrStrIW
StrCatW
PathRelativePathToW
PathAppendW
PathUnquoteSpacesA

msvcrt

_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_controlfp

Sections

.text
Size: 280KB - Virtual size: 278KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

66f9c173c995123cbe4318ad9df76b93

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

shlwapi

msvcrt

Sections

.text Size: 280KB - Virtual size: 278KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 44KB - Virtual size: 43KB

.text
Size: 280KB - Virtual size: 278KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 44KB - Virtual size: 43KB