af6e3d99f8d76fe5ca33bb75ea019aae1f65bc82345b9d5e7dfe04d00db2ef04

Sharing

Copy URL Twitter E-mail

General

Target

af6e3d99f8d76fe5ca33bb75ea019aae1f65bc82345b9d5e7dfe04d00db2ef04
Size

1.1MB
MD5

84ade0d7f7a221ab103a48243bc53721
SHA1

76ea2a6309db91a9cb8c2cdefead88e4fe9f6a84
SHA256

af6e3d99f8d76fe5ca33bb75ea019aae1f65bc82345b9d5e7dfe04d00db2ef04
SHA512

d096e5a8ea86ec35be354f0d0274e9b9f9a0fde754dc164c37842c9059213e1b3d745921e47c0e1941c5f62c3757e1854f5f177c678ede00a3e44473ee2d771b
SSDEEP

12288:qUOGcOoajUEVTfoF/llHJElFH3oHpZNSInY:rhjUE1QdlC3APS

Score

N/A

Malware Config

Signatures

Files

af6e3d99f8d76fe5ca33bb75ea019aae1f65bc82345b9d5e7dfe04d00db2ef04
.exe windows x86

117d16bf0cbac43e50d793293cdd2ada

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
LeaveCriticalSection
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSectionAndSpinCount
lstrlenA
HeapSetInformation
GetVersionExW
GetSystemDirectoryW
GetProcAddress
EnterCriticalSection
DeleteCriticalSection
CreateThread
CloseHandle
GetCommandLineW
VirtualAllocEx
GetDriveTypeW
GetCurrentThreadId
GetTickCount
GetDriveTypeA
GetFileAttributesW
GlobalAlloc
GetLastError
GetStartupInfoA
GetCommandLineA
Sleep
GetModuleHandleW
LoadLibraryW
GetModuleHandleA
GetVersion
GetCurrentProcessId
lstrlenW
GetFileAttributesA
GetProcessHeap
HeapAlloc
LoadLibraryA

user32

LoadBitmapA
IsWindowVisible
SetWindowLongW
SendMessageW
GetMenu
GetParent
DestroyIcon
EnableMenuItem
GetDlgItem
UpdateWindow
IsWindow
LoadIconA
LoadBitmapW
DestroyWindow
GetSystemMetrics
SendMessageA
GetDC
LoadIconW
ShowWindow

gdi32

CancelDC
SetBkMode
BeginPath
SetTextColor
GetLayout
SetTextAlign
DeleteDC
CreateSolidBrush
CloseEnhMetaFile
CloseFigure
GetBkColor
SelectObject
DeleteEnhMetaFile
GdiFlush
GetDCPenColor
AddFontResourceW
CreateCompatibleDC
CloseMetaFile
AbortPath
CreatePatternBrush
GetDCBrushColor
CreateMetaFileA
AbortDoc
EndDoc
DeleteColorSpace
FlattenPath
GetColorSpace
CreateMetaFileW
EndPath
FillPath
DeleteMetaFile
GetFontLanguageInfo
SaveDC
GetEnhMetaFileA
GetEnhMetaFileW
AddFontResourceA
GetGraphicsMode

advapi32

RegOpenKeyA
RegQueryValueExA

ole32

CoUninitialize
CoInitializeEx
CLSIDFromString

winmm

timeGetTime

Sections

.text
Size: 960KB - Virtual size: 960KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

117d16bf0cbac43e50d793293cdd2ada

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

winmm

Sections

.text Size: 960KB - Virtual size: 960KB

.rdata Size: 33KB - Virtual size: 33KB

.data Size: 5KB - Virtual size: 5KB

.rsrc Size: 98KB - Virtual size: 98KB

.text
Size: 960KB - Virtual size: 960KB

.rdata
Size: 33KB - Virtual size: 33KB

.data
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 98KB - Virtual size: 98KB