9af48d460b57b4acfb05e524910153952e48dbab374aab9545995a8a5852a796

Sharing

Copy URL

Twitter E-mail

General

Target

9af48d460b57b4acfb05e524910153952e48dbab374aab9545995a8a5852a796
Size

21KB
MD5

0b1d5f1bde594f3e3eac3504ee0e7e32
SHA1

6644668a533fdd12c2e9f6f213ab85b6cf34bb8e
SHA256

9af48d460b57b4acfb05e524910153952e48dbab374aab9545995a8a5852a796
SHA512

f2d473153237594b973c7106176a392bf9381624f1f259cf5fc286d3dbccfce5fa922b6fee8d60cb9481f38f270ceb026e9a1ae99a2a477f3f99de069e343fe2
SSDEEP

384:ye29rWnoK+A0I2Ux0P0wBpd5QmW7BDDSgInnnnnnnnnnnnnnnnnnnnnnnnnnnnnB:yN/t4mzBpd5G5SnnnnnnnnnnnnnnnnnB

Score

N/A

Malware Config

Signatures

Files

9af48d460b57b4acfb05e524910153952e48dbab374aab9545995a8a5852a796
.exe windows x86

a66eb7b7414444b6fb4a9cd3c3e0fce7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

??0exception@@QAE@ABV0@@Z
_vsnprintf
_fileno
malloc
_controlfp
iswdigit
wcsncmp
memcpy
qsort
_XcptFilter

kernel32

MultiByteToWideChar
GetEnvironmentStringsW
UnmapViewOfFile
GetACP
GetLastError
GlobalDeleteAtom
GetFileAttributesW
GetProcessHeap
GlobalAlloc
GetOEMCP
TlsGetValue
FormatMessageA
lstrcmpiA
GetStartupInfoA
GetSystemTimeAsFileTime
CompareStringA
GetTickCount
InitializeCriticalSection
GetWindowsDirectoryA
lstrcmpiW
CloseHandle
FindResourceW
GetVersionExW
GetTimeZoneInformation
UnhandledExceptionFilter
HeapCreate
DeleteCriticalSection
DeviceIoControl
QueryPerformanceCounter
SetStdHandle
FreeLibrary
WriteConsoleA
VirtualAlloc
FindFirstFileW
LoadResource
SetEvent
GetTempPathW
GetDriveTypeA
CreateFileW
CreateDirectoryW
WideCharToMultiByte
SystemTimeToFileTime
GetProcAddress
GetDateFormatW
InterlockedExchange
LeaveCriticalSection
CreateThread
HeapFree
GetConsoleOutputCP
VirtualProtect
GetCurrentProcessId
GetCurrentProcess
LockResource
ExitProcess
CreateEventA
TlsSetValue
HeapDestroy
ResetEvent
GetFileTime
LoadLibraryExW
EnterCriticalSection
GetVersion
SetConsoleCP
CreateFileMappingW
GetModuleHandleA
WaitForSingleObject
InitializeCriticalSectionAndSpinCount
GetCommandLineA
LocalReAlloc
HeapReAlloc
GetCPInfo
HeapAlloc
WriteFile
FreeEnvironmentStringsA
Sleep
IsBadCodePtr
FreeEnvironmentStringsW
TerminateProcess
LocalAlloc
LCMapStringW
GetStringTypeW
GetModuleHandleW
GlobalUnlock
GetCurrentThreadId
CreateFileMappingA
InterlockedIncrement
SetErrorMode
LoadLibraryA
SetUnhandledExceptionFilter
InterlockedDecrement

advapi32

CloseServiceHandle
RegCloseKey
RegQueryValueExA
RegCreateKeyExA
GetTokenInformation
RegOpenKeyExW
RegOpenKeyExA

user32

MsgWaitForMultipleObjects
SetFocus
DestroyIcon
GetCapture
GetKeyState
DrawIconEx
GetPropA
DestroyWindow
SetDlgItemTextW
SendDlgItemMessageW
SystemParametersInfoW
EnumThreadWindows
TranslateMessage
GetFocus
ShowWindow
SetPropA
UnregisterClassA
PostThreadMessageW
GetMessageW
GetClientRect
SetWindowPos
SetWindowLongA
RegisterWindowMessageW
GetWindowThreadProcessId
SetWindowLongW
SetTimer
PostQuitMessage
SetScrollInfo
CharNextW
DefWindowProcW

rpcrt4

RpcStringFreeA

gdi32

CreatePen
SetWindowExtEx
SelectPalette
GetTextMetricsA
IntersectClipRect
SetWindowOrgEx
DeleteObject

ole32

CreateStreamOnHGlobal
ReleaseStgMedium
CoCreateInstance
CoTaskMemAlloc

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a66eb7b7414444b6fb4a9cd3c3e0fce7

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

advapi32

user32

rpcrt4

gdi32

ole32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 6KB - Virtual size: 19KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 6KB - Virtual size: 19KB

.rsrc
Size: 6KB - Virtual size: 5KB