bb6d2e80495fa34f44e62042b3723158706d298fcc03793859f9067874c61b30

Sharing

Copy URL

Twitter E-mail

General

Target

bb6d2e80495fa34f44e62042b3723158706d298fcc03793859f9067874c61b30
Size

532KB
MD5

3189903bb62bc7da3137bc79e40de2ea
SHA1

9251876729de1136cd5eb34a45091f7d6ba7e90b
SHA256

bb6d2e80495fa34f44e62042b3723158706d298fcc03793859f9067874c61b30
SHA512

d44992438b2278fe430039f8b12be4453fa51878782aede4093fafcba19566ae7d94e0430d2d18228021de5bad03098f83e6a6d4684af8212c385622f2ef9dff
SSDEEP

12288:kH3yjPISYK4QlgI0VdI7XQPvUb0AOwKvh6pvS/tAyNTn5:kHmH4agd86pvJYvS/x5

Score

N/A

Malware Config

Signatures

Files

bb6d2e80495fa34f44e62042b3723158706d298fcc03793859f9067874c61b30
.exe windows x86

3ff2d4b18d8d2afe4bbc4aa615c9992a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey

kernel32

VirtualAlloc
FindResourceA
Sleep
VirtualFree
WriteFile
HeapCreate
IsValidCodePage
CreateProcessA
GetEnvironmentStrings
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
GetConsoleMode
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
WritePrivateProfileStringA
SizeofResource
FileTimeToLocalFileTime
CreateProcessW
lstrlenW
VirtualQuery
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
UnmapViewOfFile
LoadLibraryExW
GetLastError
InterlockedIncrement
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
RemoveDirectoryA
GlobalLock
DuplicateHandle
FindNextFileA
CreateFileMappingA
CompareStringA
FindFirstFileA
lstrcmpA
FreeEnvironmentStringsW
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
SetErrorMode
DeleteFileA
CreateDirectoryA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
GlobalAlloc
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WaitForSingleObject
InterlockedExchange
GetStringTypeA
lstrcmpiA
GetCPInfo
GetTempPathA
SetStdHandle
SetHandleCount
lstrcatA
LocalAlloc
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapFree
HeapDestroy
SetEvent
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle

user32

SetWindowLongA
ReleaseCapture
PostMessageA
GetWindowRect
GetSystemMetrics
SetCapture
FillRect
SetTimer
GetWindowLongA
EnableMenuItem
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
SetWindowTextA
UpdateWindow
GetParent
GetMessageA
DestroyWindow
GetActiveWindow
GetClientRect
UnregisterClassA
GetDC
PeekMessageA
EndPaint
DispatchMessageA
SetWindowPos
PostQuitMessage
SetForegroundWindow
CheckMenuItem
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
GetDesktopWindow
ReleaseDC
EndDialog
MessageBoxA
GetSysColor
SystemParametersInfoA
PtInRect
IsWindowVisible
InvalidateRect
wsprintfA
DefWindowProcA
SetCursor

msvcrt

_strcmpi
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 352KB - Virtual size: 351KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ff2d4b18d8d2afe4bbc4aa615c9992a

Headers

File Characteristics

Imports

advapi32

kernel32

user32

msvcrt

Sections

.text Size: 352KB - Virtual size: 351KB

.rdata Size: 56KB - Virtual size: 53KB

.data Size: 116KB - Virtual size: 114KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 352KB - Virtual size: 351KB

.rdata
Size: 56KB - Virtual size: 53KB

.data
Size: 116KB - Virtual size: 114KB

.rsrc
Size: 4KB - Virtual size: 1KB