fd738eedda687047b988c3d92632e56890b796e1e219b118cf4fff14cd4c8f0f

Sharing

Copy URL Twitter E-mail

General

Target

fd738eedda687047b988c3d92632e56890b796e1e219b118cf4fff14cd4c8f0f
Size

257KB
MD5

dba2b544034ed423fb2af426d9f9057a
SHA1

f2c6bda7d54c4d2e4fa651d7599d9560939e1b4a
SHA256

fd738eedda687047b988c3d92632e56890b796e1e219b118cf4fff14cd4c8f0f
SHA512

83237497b2f7cb2b7c41d52534e1ce5ba39be6d5b65fd601a6244ec55a466317076058512e6d3e72036cdc36f16838db7824aadb29e0db33b331cbc931a2d555
SSDEEP

3072:RicFgFSqXNa0s3o2MV2SwcfjUGkmj1AWFhGIhtrJG+2ozcQU8gh1yhw7yds5VLGM:AXNNSo2EscAxmpDGIhtrTpUpH15WJS3

Score

N/A

Malware Config

Signatures

Files

fd738eedda687047b988c3d92632e56890b796e1e219b118cf4fff14cd4c8f0f
.exe windows x86

7af25957aac184cede8a4d48ab7d2464

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetLastError
GetTickCount
GetCurrentProcess
MultiByteToWideChar
GetSystemDirectoryW
GetVersionExA
GetProcessHeap
GetStartupInfoW
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
TlsAlloc
GetCurrentThreadId
HeapCreate
ExitProcess
GetModuleFileNameA
GetEnvironmentStringsW
GetStartupInfoA
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
Sleep
GetLocaleInfoA
InitializeCriticalSection
LoadLibraryA
CreateMutexA
GetProcAddress

user32

GetSystemMetrics
SetTimer
LoadCursorA
LoadMenuIndirectA
SetWindowTextW
GetDlgItemTextW
keybd_event
WaitMessage
ActivateKeyboardLayout
EndMenu
MoveWindow
MonitorFromRect
GetDlgItemInt
LoadCursorW
InsertMenuA
MessageBeep
GetMenu
SetWindowPos
GetKeyboardLayout
LoadMenuA
GetDesktopWindow
EnableMenuItem
LoadBitmapA
CharUpperW
SetWindowLongW
CharNextW
RegisterClassExA
CreateDesktopW
SetFocus
DialogBoxIndirectParamA
RegisterClassExW
MonitorFromWindow
GetCapture
IsDlgButtonChecked
GetClassInfoW
wsprintfA
RegisterClassW
TrackPopupMenuEx
MessageBoxA
GetCursorPos
MonitorFromPoint
CharLowerA
AdjustWindowRect
CreateDialogIndirectParamW
GetIconInfo
UnregisterClassW
GetKeyboardType
GetCaretPos

advapi32

RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegDeleteKeyW
CloseServiceHandle
StartServiceW
OpenServiceW
OpenSCManagerW

usp10

ScriptGetGlyphABCWidth
ScriptStringFree
ScriptShape
ScriptGetLogicalWidths
ScriptItemize
ScriptCacheGetHeight

gdi32

AddFontResourceW
GetStockObject
CreateFontIndirectExW
CreateScalableFontResourceW
CreateICW
CreateCompatibleDC
GetMetaFileA
GetEnhMetaFilePixelFormat
CreateMetaFileW
CreateSolidBrush
RemoveFontResourceExA
CreateBrushIndirect

rasppp

RasCpEnumProtocolIds

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 1KB - Virtual size: 477KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 109KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 109KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7af25957aac184cede8a4d48ab7d2464

Headers

File Characteristics

Imports

kernel32

user32

advapi32

usp10

gdi32

rasppp

Sections

.text Size: 17KB - Virtual size: 17KB

.text Size: 1KB - Virtual size: 477KB

.rdata Size: 3KB - Virtual size: 16KB

.edata Size: 109KB - Virtual size: 162KB

.rdata Size: 4KB - Virtual size: 95KB

.data Size: 8KB - Virtual size: 97KB

.edata Size: 109KB - Virtual size: 143KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.text
Size: 1KB - Virtual size: 477KB

.rdata
Size: 3KB - Virtual size: 16KB

.edata
Size: 109KB - Virtual size: 162KB

.rdata
Size: 4KB - Virtual size: 95KB

.data
Size: 8KB - Virtual size: 97KB

.edata
Size: 109KB - Virtual size: 143KB

.rsrc
Size: 3KB - Virtual size: 2KB