f28c56dfae77c517dd1bcfab9cfa6489834553d7c3f9f022b29b3f02800862c4

Sharing

Copy URL

Twitter E-mail

General

Target

f28c56dfae77c517dd1bcfab9cfa6489834553d7c3f9f022b29b3f02800862c4
Size

208KB
MD5

d8e0bd15e2bbcb5aadb7ae81f682d7df
SHA1

098a9b774d90a0572cbf26985ff8a5e5ebd7dd2c
SHA256

f28c56dfae77c517dd1bcfab9cfa6489834553d7c3f9f022b29b3f02800862c4
SHA512

6ce8c8699c1afd4b59cafb11e92ba02971a490859c4308c835f17bc8253d52de2e385357580e4c05958f84628b559277e899dc87e42626bf0a62c157c5ad653d
SSDEEP

3072:WDPrP0+IfBxULK6ur4AKKV6AopNgyci0phK0jnboVDcu38Xi+1ffsvaspDZc:gz0+uAKz4AKKSYg0jU9cOI3hA

Score

N/A

Malware Config

Signatures

Files

f28c56dfae77c517dd1bcfab9cfa6489834553d7c3f9f022b29b3f02800862c4
.exe windows x86

b9331c17c0d1c14d21a87f1af269f001

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CreateFileMappingW
GetTimeFormatA
GetVersionExA
MultiByteToWideChar
GetEnvironmentVariableA
lstrcpyW
ExpandEnvironmentStringsW
GetAtomNameW
GetVolumeInformationW
GetModuleHandleA
SystemTimeToFileTime
EnumTimeFormatsA
RemoveDirectoryA
DosDateTimeToFileTime
SearchPathA
GlobalDeleteAtom
CreateMailslotW
SetLocaleInfoA
GetAtomNameA
GetSystemDirectoryA
GetNumberFormatW
GetWindowsDirectoryW
OpenFile
GetFullPathNameA
CreateDirectoryW
GlobalGetAtomNameA
EnumTimeFormatsW
GetNamedPipeInfo

user32

InsertMenuA
CreateWindowExA
LoadMenuA
DeleteMenu
CreateDesktopW
wvsprintfW
ChildWindowFromPoint
LoadIconA
GetClassInfoA
GetDCEx
CreateAcceleratorTableA
GetCapture
IsChild
FindWindowA
PostMessageA
GetCapture
CreateDesktopA
EnableWindow
SendMessageA

gdi32

GetGlyphOutlineW
RemoveFontMemResourceEx
CreatePalette
SwapBuffers
PathToRegion
GetROP2
GetDIBits
GetObjectW
CreateColorSpaceW
GetDCBrushColor
CreateSolidBrush
GetPath
GetEnhMetaFilePixelFormat
GetTextCharset
AddFontResourceA
CreateDCW
CopyEnhMetaFileW
GetTextColor

advapi32

RegOpenKeyA
RegOpenKeyExA
RegOpenKeyExW

shlwapi

PathCompactPathA
PathBuildRootW
PathBuildRootA
HashData
SHRegSetUSValueW
PathGetCharTypeA
ColorAdjustLuma
AssocQueryStringA
PathGetCharTypeW
StrRStrIW
PathFindOnPathW
PathIsSystemFolderA
UrlHashW
ColorRGBToHLS
StrCSpnA
PathIsDirectoryA
PathRemoveExtensionA

comctl32

FlatSB_GetScrollRange
ImageList_GetFlags
ImageList_SetFlags
MakeDragList
ImageList_BeginDrag
DrawStatusText
CreateMRUListW

wsock32

setsockopt

Sections

.dIMPb
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.F
Size: 2KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.n
Size: 3KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zEH
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.arasaw
Size: 5KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 770B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b9331c17c0d1c14d21a87f1af269f001

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shlwapi

comctl32

wsock32

Sections

.dIMPb Size: 10KB - Virtual size: 10KB

.F Size: 2KB - Virtual size: 201KB

.n Size: 3KB - Virtual size: 30KB

.zEH Size: 13KB - Virtual size: 13KB

.arasaw Size: 5KB - Virtual size: 114KB

.rsrc Size: 171KB - Virtual size: 171KB

.reloc Size: 1024B - Virtual size: 770B

.dIMPb
Size: 10KB - Virtual size: 10KB

.F
Size: 2KB - Virtual size: 201KB

.n
Size: 3KB - Virtual size: 30KB

.zEH
Size: 13KB - Virtual size: 13KB

.arasaw
Size: 5KB - Virtual size: 114KB

.rsrc
Size: 171KB - Virtual size: 171KB

.reloc
Size: 1024B - Virtual size: 770B