e79b23692a1c8218d6e8d028065cddb013211577f092105cc440598fdaac9ecd

Sharing

Copy URL Twitter E-mail

General

Target

e79b23692a1c8218d6e8d028065cddb013211577f092105cc440598fdaac9ecd
Size

257KB
MD5

04b50133f430fc1ce2f1f2e46b68aff0
SHA1

995947b60765cebd1dc8c4f82f09b4fee9a317ba
SHA256

e79b23692a1c8218d6e8d028065cddb013211577f092105cc440598fdaac9ecd
SHA512

955fd4bb2a58af21648bf2730c48cd011b190c3264f04e4091fb3361a54ecc7d52af4ea67e62f700df1da3f267a1df4c86ca9c829da64703e91be531cd4c4bf2
SSDEEP

3072:BicFgFSqXNa0s3o2MV2SwcfjUGkmj1AWFhGIhtrJG+2ozcQU8gh1yhw7yds5VLGM:wXNNSo2EscAxmpDGIhtrTpUpH15WJS3

Score

N/A

Malware Config

Signatures

Files

e79b23692a1c8218d6e8d028065cddb013211577f092105cc440598fdaac9ecd
.exe windows x86

7af25957aac184cede8a4d48ab7d2464

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetLastError
GetTickCount
GetCurrentProcess
MultiByteToWideChar
GetSystemDirectoryW
GetVersionExA
GetProcessHeap
GetStartupInfoW
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
TlsAlloc
GetCurrentThreadId
HeapCreate
ExitProcess
GetModuleFileNameA
GetEnvironmentStringsW
GetStartupInfoA
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
Sleep
GetLocaleInfoA
InitializeCriticalSection
LoadLibraryA
CreateMutexA
GetProcAddress

user32

GetSystemMetrics
SetTimer
LoadCursorA
LoadMenuIndirectA
SetWindowTextW
GetDlgItemTextW
keybd_event
WaitMessage
ActivateKeyboardLayout
EndMenu
MoveWindow
MonitorFromRect
GetDlgItemInt
LoadCursorW
InsertMenuA
MessageBeep
GetMenu
SetWindowPos
GetKeyboardLayout
LoadMenuA
GetDesktopWindow
EnableMenuItem
LoadBitmapA
CharUpperW
SetWindowLongW
CharNextW
RegisterClassExA
CreateDesktopW
SetFocus
DialogBoxIndirectParamA
RegisterClassExW
MonitorFromWindow
GetCapture
IsDlgButtonChecked
GetClassInfoW
wsprintfA
RegisterClassW
TrackPopupMenuEx
MessageBoxA
GetCursorPos
MonitorFromPoint
CharLowerA
AdjustWindowRect
CreateDialogIndirectParamW
GetIconInfo
UnregisterClassW
GetKeyboardType
GetCaretPos

advapi32

RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegDeleteKeyW
CloseServiceHandle
StartServiceW
OpenServiceW
OpenSCManagerW

usp10

ScriptGetGlyphABCWidth
ScriptStringFree
ScriptShape
ScriptGetLogicalWidths
ScriptItemize
ScriptCacheGetHeight

gdi32

AddFontResourceW
GetStockObject
CreateFontIndirectExW
CreateScalableFontResourceW
CreateICW
CreateCompatibleDC
GetMetaFileA
GetEnhMetaFilePixelFormat
CreateMetaFileW
CreateSolidBrush
RemoveFontResourceExA
CreateBrushIndirect

rasppp

RasCpEnumProtocolIds

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 1KB - Virtual size: 477KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 109KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 109KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7af25957aac184cede8a4d48ab7d2464

Headers

File Characteristics

Imports

kernel32

user32

advapi32

usp10

gdi32

rasppp

Sections

.text Size: 17KB - Virtual size: 17KB

.text Size: 1KB - Virtual size: 477KB

.rdata Size: 3KB - Virtual size: 16KB

.edata Size: 109KB - Virtual size: 162KB

.rdata Size: 4KB - Virtual size: 95KB

.data Size: 8KB - Virtual size: 97KB

.edata Size: 109KB - Virtual size: 143KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.text
Size: 1KB - Virtual size: 477KB

.rdata
Size: 3KB - Virtual size: 16KB

.edata
Size: 109KB - Virtual size: 162KB

.rdata
Size: 4KB - Virtual size: 95KB

.data
Size: 8KB - Virtual size: 97KB

.edata
Size: 109KB - Virtual size: 143KB

.rsrc
Size: 3KB - Virtual size: 2KB