b8d340c0dc2b07ea07db489a2894e5530d34c653a81ce732935fcfbb1e882540

Sharing

Copy URL Twitter E-mail

General

Target

b8d340c0dc2b07ea07db489a2894e5530d34c653a81ce732935fcfbb1e882540
Size

820KB
MD5

08c5d34c47f22f4cb135b4be4b4a7400
SHA1

6f936a762aba1d2286a868f58ac79663227a1bc9
SHA256

b8d340c0dc2b07ea07db489a2894e5530d34c653a81ce732935fcfbb1e882540
SHA512

501f3f89d4b8a9117300e7e65f879158f44f41ace6203d501726f7a00bc25faa50d33a716270c7674ca1de0e09ed374f0442aa4fd00112867bba595a643ed579
SSDEEP

12288:YEG7sj0Ju+JQrWmgfsPd9ErFftLnfCx3/4C7QDnmqOJqjxWIjdI7m2XY6jDhcLHX:Y/Eh3gUnU5nfCh/44OUqjwyIq2oOiAm

Score

N/A

Malware Config

Signatures

Files

b8d340c0dc2b07ea07db489a2894e5530d34c653a81ce732935fcfbb1e882540
.exe windows x86

b3ca58fe0aea37e0794bdd198e0c8b3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
InterlockedExchange
QueryPerformanceCounter
ConvertDefaultLocale
GetStdHandle
GlobalUnlock
EnumResourceLanguagesW
LocalFileTimeToFileTime
GetConsoleMode
CloseHandle
GetCommandLineA
UnhandledExceptionFilter
SizeofResource
GetACP
SetEndOfFile
Sleep
GetCommandLineW
HeapFree
SetEnvironmentVariableA
UnlockFile
DuplicateHandle
LockResource
GetModuleFileNameA
LockFile
SetUnhandledExceptionFilter
GlobalReAlloc
GetSystemInfo
GetLastError
HeapSize
GlobalDeleteAtom
WriteFile
GlobalFree
GetSystemTimeAsFileTime
LocalReAlloc
GetCurrentThreadId
GetStartupInfoA
GetFileType
CompareStringA
SetLastError
GlobalAlloc
LocalAlloc
FreeEnvironmentStringsA
HeapReAlloc
GetLocaleInfoA
lstrcmpA
VirtualAlloc
FindClose
FileTimeToLocalFileTime
SetStdHandle
LeaveCriticalSection
GlobalLock
HeapCreate
ReadFile
HeapDestroy
LocalFree
RtlUnwind
GetSystemDirectoryA
FlushFileBuffers
DeleteCriticalSection
lstrlenA
GetFileSize
SetErrorMode
RaiseException
TerminateProcess
IsDebuggerPresent
GetConsoleCP
GetOEMCP
SetFileTime
FileTimeToSystemTime
MulDiv
GetThreadLocale
EnterCriticalSection
GetVersionExA
InitializeCriticalSection
GetStringTypeA
InterlockedIncrement
GetWindowsDirectoryA
LCMapStringA
FreeLibrary
VirtualQuery
HeapAlloc
InterlockedDecrement
GetConsoleOutputCP
TlsAlloc
GetProcessHeap
VirtualFree
FreeResource
LoadResource
SystemTimeToFileTime
GetFileTime
SetFilePointer
LoadLibraryA
GetEnvironmentStrings
GlobalHandle
TlsSetValue
TlsGetValue
GlobalFlags
SetHandleCount
TlsFree
GetTimeZoneInformation
GetCurrentProcessId
GetModuleHandleA
GetVersion
VirtualProtect
LoadLibraryExA
AddAtomA
WriteConsoleA
GetProcAddress
SetConsoleCP
FreeConsole
ReadConsoleInputA
GetTickCount
WriteConsoleInputA
AllocConsole
CreateFileA
ExitProcess

user32

IsRectEmpty
DestroyMenu
MapWindowPoints
GetScrollPos
GetDCEx
SetScrollRange
IsChild
MessageBeep
GetSystemMenu
SetCursor
DestroyWindow
GetNextDlgTabItem
DeferWindowPos
CopyRect
ShowWindow
GetWindowRect
GetClientRect
GetMenu
EnableMenuItem
UnpackDDElParam
IntersectRect
ScreenToClient
GetWindowThreadProcessId
GetTopWindow
GetLastActivePopup
EndDialog
GetScrollRange
UnregisterClassA
SetRectEmpty
ReleaseDC
GetScrollInfo
GetDlgItem
OffsetRect
CheckMenuItem
SystemParametersInfoA
ClientToScreen
CallNextHookEx
SetFocus
ShowOwnedPopups
SendDlgItemMessageA
GetDC
SetWindowRgn
GetKeyState
ReleaseCapture
BeginDeferWindowPos
GetCursorPos
DeleteMenu
BringWindowToTop
SetTimer
EqualRect
SetRect
DestroyIcon
LockWindowUpdate
ScrollWindow
GetParent
GetMessagePos
GetWindowDC
GetDesktopWindow
IsWindow
IsWindowVisible
SetActiveWindow
GetWindowRgn
BeginPaint
GetSysColorBrush
PostQuitMessage
MapDialogRect
SetWindowPos
SetCapture
SetWindowContextHelpId
EndPaint
UnhookWindowsHookEx
InvalidateRgn
WindowFromPoint
InflateRect
SetScrollInfo
SetScrollPos
GetSystemMetrics
TrackPopupMenu
IsZoomed
FillRect
ReuseDDElParam
UpdateWindow
GetSubMenu
GetFocus
SetMenu
MoveWindow
IsIconic
EndDeferWindowPos
GetWindow
SetMenuItemBitmaps
GetNextDlgGroupItem
GetMenuItemCount
SetParent
GetActiveWindow
InvalidateRect
ShowScrollBar
TranslateMessage
PtInRect
AdjustWindowRectEx
SetForegroundWindow
GetMenuItemID
GetMenuState
RedrawWindow
GetCapture
GetSysColor
KillTimer
GetMessageTime
GetForegroundWindow
CreatePopupMenu
GetMenuCheckMarkDimensions
GetDlgCtrlID
DrawIcon
IsWindowEnabled
GetWindowPlacement
ValidateRect

gdi32

StretchDIBits
CombineRgn
SelectObject
DeleteDC
SetViewportExtEx
SetMapMode
ExtSelectClipRgn
SetBkColor
CreateSolidBrush
PatBlt
CreateCompatibleDC
GetDeviceCaps
Ellipse
CreateCompatibleBitmap
CreateRectRgnIndirect
SetWindowExtEx
GetWindowExtEx
PtVisible
GetClipBox
SaveDC
GetTextColor
GetStockObject
GetMapMode
RestoreDC
ScaleWindowExtEx
Escape
SetRectRgn
ScaleViewportExtEx
OffsetRgn
CreateBitmap
GetRgnBox
CreateEllipticRgn
CreatePatternBrush
SetTextColor
GetPixel
SetViewportOrgEx
DeleteObject
DPtoLP
SetBkMode
SelectClipRgn
ExcludeClipRect
BitBlt
CreateRectRgn
IntersectClipRect
GetBkColor
RectVisible
OffsetViewportOrgEx

advapi32

SetFileSecurityW
RegCloseKey

shell32

DragFinish
DragAcceptFiles

ole32

CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
CoRevokeClassObject
CoTaskMemFree
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
StgCreateDocfileOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CoFreeUnusedLibraries
CoRegisterMessageFilter
CLSIDFromString
CoCreateInstance
StgOpenStorageOnILockBytes
OleInitialize
CLSIDFromProgID

oleaut32

VariantCopy
SystemTimeToVariantTime
VariantChangeType
SysAllocStringLen
VariantTimeToSystemTime
OleLoadPicture
SysAllocString
VariantInit
SysStringLen
SafeArrayDestroy
VariantClear
OleCreateFontIndirect
SysFreeString

comctl32

ImageList_LoadImageW

shlwapi

PathFileExistsW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathRemoveExtensionW
PathIsUNCW

Sections

.text
Size: 557KB - Virtual size: 557KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 5.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b3ca58fe0aea37e0794bdd198e0c8b3d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

Sections

.text Size: 557KB - Virtual size: 557KB

.rdata Size: 87KB - Virtual size: 87KB

.data Size: 148KB - Virtual size: 5.4MB

.tls Size: - Virtual size: 101B

.rsrc Size: 17KB - Virtual size: 16KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 557KB - Virtual size: 557KB

.rdata
Size: 87KB - Virtual size: 87KB

.data
Size: 148KB - Virtual size: 5.4MB

.tls
Size: - Virtual size: 101B

.rsrc
Size: 17KB - Virtual size: 16KB

.reloc
Size: 8KB - Virtual size: 7KB