d78f58ca4116b9f2c31d5e546c3b40e1745ec7092f451e299d276ca811c5deac

Sharing

Copy URL

Twitter E-mail

General

Target

d78f58ca4116b9f2c31d5e546c3b40e1745ec7092f451e299d276ca811c5deac
Size

340KB
MD5

9cdd620f7981e31ef9629d18b5380a1e
SHA1

0412fbd752dd37254ca1591556509ec998b6e270
SHA256

d78f58ca4116b9f2c31d5e546c3b40e1745ec7092f451e299d276ca811c5deac
SHA512

71b4c67311f01e075059f3dca1e86fcc6b9f0f1665f75c125098bddca429bd827f2c8d69ed93b0b2aefaa98eac426bf8030388c393fc8413b7f09bac61a7979b
SSDEEP

3072:G1yeEq6vXiIzPk+st3HSyE91g935tkfWAq5McaMRkzMqIBB/e9YbRE:G1yeHIoPjC1gfsWNjlReIvm

Score

N/A

Malware Config

Signatures

Files

d78f58ca4116b9f2c31d5e546c3b40e1745ec7092f451e299d276ca811c5deac
.exe windows x86

98bce736616203a052735250279f9525

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_onexit
_exit
_controlfp
__getmainargs
_XcptFilter
_acmdln
__p__fmode
_except_handler3
__set_app_type
__setusermatherr
__p__commode
_adjust_fdiv
memset
strchr
strcat
??3@YAXPAX@Z
??1type_info@@UAE@XZ
_strupr
_strlwr
_strnicmp
_chmod
_stricmp
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_CxxThrowException
??0exception@@QAE@ABV0@@Z
isdigit
atoi
printf
_chdrive
_chdir
strcpy
__dllonexit
??2@YAPAXI@Z
__CxxFrameHandler
abs
memcpy
strlen
_initterm
_itoa
atol
sprintf
free
malloc
strcmp
rand
srand
time
memcmp
memchr
memmove
strncpy
strstr
_access
exit
strcspn

wsock32

closesocket
WSAGetLastError
WSAAsyncSelect
recv
send
select
shutdown
WSAStartup
connect
ioctlsocket
WSACleanup
htons
gethostbyname
socket

kernel32

GetTickCount
LocalFree
InterlockedDecrement
WaitForSingleObject
CreateEventA
GetWindowsDirectoryA
OpenProcess
TerminateProcess
GetCurrentProcess
CreateDirectoryA
MultiByteToWideChar
GetFileSize
WriteFile
RaiseException
InterlockedExchange
LocalAlloc
LockResource
SizeofResource
GetProcAddress
lstrcmpiA
GlobalFree
GlobalUnlock
GlobalLock
GlobalReAlloc
GlobalAlloc
GetModuleHandleA
OutputDebugStringA
CloseHandle
Sleep
lstrlenA
FormatMessageA
GetLastError
FreeResource
CreateFileA
ReadFile
LoadResource
FindResourceA
GetModuleFileNameA
GetStartupInfoA
RemoveDirectoryA
CopyFileA
GetSystemDirectoryA
FreeLibrary
LoadLibraryA
DeleteFileA

user32

LoadIconA
GetWindowRect
CreateDialogParamA
LoadMenuA
GetCursorPos
GetSubMenu
EnableMenuItem
TrackPopupMenuEx
DestroyMenu
GetDlgCtrlID
UpdateWindow
EnableWindow
SetFocus
PostMessageA
GetWindowTextA
SetWindowTextA
RedrawWindow
SetCapture
KillTimer
GetDlgItemTextA
MessageBoxA
SetWindowRgn
GetAsyncKeyState
GetDlgItem
GetActiveWindow
GetDesktopWindow
ShowWindow
SetTimer
LoadStringA
EndDialog
DialogBoxParamA
SetForegroundWindow
SetWindowPos
BeginPaint
IsWindowVisible
PostQuitMessage
TranslateMessage
DispatchMessageA
DefWindowProcA
CreateWindowExA
SendMessageA
GetParent
GetDC
ReleaseDC
IsIconic
EndPaint
InvalidateRect
SetWindowLongA
IsWindow
GetWindowLongA
CallWindowProcA
LoadImageA
LoadCursorA
RegisterClassExA
FindWindowA
GetMessageA
TranslateAcceleratorA
LoadAcceleratorsA
SetDlgItemTextA
ScreenToClient
GetClientRect
PeekMessageA
DestroyWindow
ReleaseCapture
GetWindowThreadProcessId

gdi32

SetBkColor
SetTextColor
GetDIBColorTable
CreatePalette
SetBkMode
CreateSolidBrush
GetObjectA
StretchBlt
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
DeleteObject
SelectPalette
RealizePalette
CreateRoundRectRgn
CreateFontA

advapi32

RegEnumKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegDeleteKeyA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegConnectRegistryA
RegCreateKeyExA
RegSetValueExA
RegEnumValueA

shell32

Shell_NotifyIconA
ShellExecuteA

urlmon

URLDownloadToCacheFileA
URLDownloadToFileA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

wininet

InternetGetConnectedState

ole32

CoInitialize
CoUninitialize
CoCreateInstance
CLSIDFromString

oleaut32

VariantClear
SysFreeString
SysAllocString

Sections

pec1
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

98bce736616203a052735250279f9525

Headers

File Characteristics

Imports

msvcrt

wsock32

kernel32

user32

gdi32

advapi32

shell32

urlmon

version

wininet

ole32

oleaut32

Sections

pec1 Size: 120KB - Virtual size: 120KB

.rsrc Size: 212KB - Virtual size: 212KB

.rsrc Size: 4KB - Virtual size: 4KB

pec1
Size: 120KB - Virtual size: 120KB

.rsrc
Size: 212KB - Virtual size: 212KB

.rsrc
Size: 4KB - Virtual size: 4KB