b09ad6a04a5aad99fa9cf99fdff2f815d05c9c5783f111ca17520a782a56914d

Sharing

Copy URL Twitter E-mail

General

Target

b09ad6a04a5aad99fa9cf99fdff2f815d05c9c5783f111ca17520a782a56914d
Size

292KB
MD5

9be9f978b21d89c4e1e9a57c98c85144
SHA1

d3ffd6fa69f77096b46c67c9087a0275d0a8886a
SHA256

b09ad6a04a5aad99fa9cf99fdff2f815d05c9c5783f111ca17520a782a56914d
SHA512

1f2a75d2de9e5c828f07e7ce1a57b8378499d84aeddf086190f896da78b2f57075131c01ff2fbb807bca2138ee8e7b5816328cb5cf688600504346b243317d15
SSDEEP

6144:5bRKD0jgsVSXVvrSkmE1NB84m86UBg1wB6fY:5bRycVSXVcUBg1w4f

Score

N/A

Malware Config

Signatures

Files

b09ad6a04a5aad99fa9cf99fdff2f815d05c9c5783f111ca17520a782a56914d
.exe windows x86

e31f9c62581b4704860f397e4869c8f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileW
GetTickCount
GetCurrentProcessId
SetLastError
GetLastError
CreateWaitableTimerW
TerminateThread
FreeResource
DuplicateHandle
GetLocalTime
CreateFileW
SetFilePointer
GetFileAttributesExW
GetFileSize
Sleep
DeleteFileW
GlobalAddAtomW
FindFirstFileW
CancelWaitableTimer
SetThreadPriority
InterlockedDecrement
GlobalFree
GetProcAddress
QueryDosDeviceW
InterlockedIncrement
ExitProcess
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualAlloc
VirtualFree
VirtualProtect
GlobalDeleteAtom
GetModuleHandleW
FileTimeToSystemTime
LoadResource
SetEvent
SetCurrentDirectoryW
MultiByteToWideChar
LoadLibraryW
FindNextFileW
GetCurrentProcess
FreeLibrary
FindClose
FindNextChangeNotification
SizeofResource
CloseHandle
lstrcpyW
ReadFile
LockResource
CreateEventW
lstrlenW
GetCurrentThread
GetUserDefaultLangID
FindResourceW
SetEndOfFile
SuspendThread
MulDiv
GetLogicalDrives
GetVersion

user32

TrackPopupMenu
MessageBoxW
SystemParametersInfoW
RegisterHotKey
TranslateMessage
GetMessageW
SendDlgItemMessageW
GetSysColor
LoadStringW
CreateWindowExW
GetWindowRect
SetDlgItemTextW
GetSystemMetrics
SetWindowPos
GetKeyState
DestroyIcon
GetClassNameW
FillRect
SendMessageW
SetLayeredWindowAttributes
CreatePopupMenu
RegisterWindowMessageW
DialogBoxParamW
UpdateWindow
GetWindowTextW
ReleaseCapture
SetWindowTextW
LoadBitmapW
PostMessageW
DispatchMessageW
GetParent
IsDlgButtonChecked
InvalidateRect
GetCursorPos
GetWindowDC
EndDialog
LoadCursorW
PostQuitMessage
ReleaseDC
GetWindowThreadProcessId

gdi32

DeleteDC
CreateBitmap
GetObjectW
GetMapMode
CreateRoundRectRgn
CreatePen
SetTextColor
Rectangle
CreateCompatibleDC
GetDeviceCaps
SetDIBits
StretchBlt
GetClipBox
CreateDCW
CreateICW
SetBkMode
SetMapMode
MoveToEx
LineTo
SelectObject

advapi32

RegCloseKey
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
RegOpenKeyExW
GetUserNameW

shell32

Shell_NotifyIconW

ole32

CreateStreamOnHGlobal
CoInitializeEx
CoInitialize

oleaut32

SysFreeString
OleLoadPicture

Sections

.text
Size: 264KB - Virtual size: 262KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e31f9c62581b4704860f397e4869c8f6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 264KB - Virtual size: 262KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 20KB - Virtual size: 16KB

.text
Size: 264KB - Virtual size: 262KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 20KB - Virtual size: 16KB