9d77c3d69e2957be5585b5a2b0397aa61d6c50dd03b14db6bc4becc8bb4dcb42

Sharing

Copy URL Twitter E-mail

General

Target

9d77c3d69e2957be5585b5a2b0397aa61d6c50dd03b14db6bc4becc8bb4dcb42
Size

246KB
MD5

c507492e8f152658d6e4ce2cc3fa7f04
SHA1

22b0f03abf6eb5da2d36e2c8e79725e7f2baf8ce
SHA256

9d77c3d69e2957be5585b5a2b0397aa61d6c50dd03b14db6bc4becc8bb4dcb42
SHA512

9e74b275850035466dc279cd393ad3005a714241acd00307f78d3bf2fa1fdd2d7b7df88fb0da03d3b100a3bc952b153475c02e49bf35b0028f5d3757d8f5d22b
SSDEEP

6144:qCu21vYmFPDTI6eWPeBoNtbu7UQeyXIaYLD+5wUa9ZZdJ4V7mn:qk1vY0vJeagiA1xXIa2DSIZaYn

Score

N/A

Malware Config

Signatures

Files

9d77c3d69e2957be5585b5a2b0397aa61d6c50dd03b14db6bc4becc8bb4dcb42
.exe windows x86

89cb98d01ebfac070ed5baa3bec2c879

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetLastError
GetTickCount
GetCurrentProcess
MultiByteToWideChar
GetSystemDirectoryW
GetVersionExA
GetProcessHeap
GetStartupInfoW
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
TlsAlloc
GetCurrentThreadId
HeapCreate
ExitProcess
GetModuleFileNameA
GetEnvironmentStringsW
GetStartupInfoA
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
Sleep
GetLocaleInfoA
InitializeCriticalSection
LoadLibraryA
CreateMutexA
GetProcAddress

user32

GetSystemMetrics
EnumClipboardFormats
SetTimer
RegisterWindowMessageA
RegisterClassExW
LoadBitmapW
OpenClipboard
DialogBoxIndirectParamA
LoadImageA
CharLowerA
AppendMenuW
CharPrevA
GetMenuState
LoadMenuA
DialogBoxParamW
SetCursor
InvalidateRect
DestroyMenu
IsChild
GetMenuItemInfoA
SetParent
DialogBoxParamA
CreateAcceleratorTableA
CharNextA
ShowCursor
MessageBeep
GetActiveWindow

advapi32

RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegDeleteKeyW
CloseServiceHandle
StartServiceW
OpenServiceW
OpenSCManagerW

resutils

ResUtilGetProperty
ResUtilAddUnknownProperties
ResUtilStartResourceService
ResUtilFindExpandSzProperty
ResUtilFindBinaryProperty
ResUtilGetDwordValue
ResUtilGetBinaryProperty
ResUtilResourcesEqual
ResUtilGetResourceDependentIPAddressProps

gdi32

SelectBrushLocal
CreatePalette
CreateMetaFileA
CreateFontW
RemoveFontResourceExA
SetEnhMetaFileBits
GetMetaFileA
CreateRectRgn
CreatePolygonRgn
GdiGetBatchLimit

atmlib

ATMFontStatus
ATMMakePFMA
ATMInstallSubstFontA
ATMInstallSubstFontW
ATMGetVersionExA
ATMMakePFMW
ATMXYShowTextA
ATMProperlyLoaded
ATMMakePSSW
ATMEnumMMFonts

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.icode
Size: 2KB - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 94KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 117KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89cb98d01ebfac070ed5baa3bec2c879

Headers

File Characteristics

Imports

kernel32

user32

advapi32

resutils

gdi32

atmlib

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 3KB - Virtual size: 5KB

.icode Size: 2KB - Virtual size: 369KB

.edata Size: 94KB - Virtual size: 129KB

.rdata Size: 2KB - Virtual size: 135KB

.data Size: 10KB - Virtual size: 37KB

.edata Size: 117KB - Virtual size: 150KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 3KB - Virtual size: 5KB

.icode
Size: 2KB - Virtual size: 369KB

.edata
Size: 94KB - Virtual size: 129KB

.rdata
Size: 2KB - Virtual size: 135KB

.data
Size: 10KB - Virtual size: 37KB

.edata
Size: 117KB - Virtual size: 150KB

.rsrc
Size: 2KB - Virtual size: 1KB