a2611f0fb1b00d772bdd953c9d5fd1a6d4ae2cdd70964ffeb627fb5505247a5c

Sharing

Copy URL Twitter E-mail

General

Target

a2611f0fb1b00d772bdd953c9d5fd1a6d4ae2cdd70964ffeb627fb5505247a5c
Size

155KB
MD5

34f194c42f41a6950be78a1f82348c90
SHA1

d66fe2463466750428739731e17c7443455c5d97
SHA256

a2611f0fb1b00d772bdd953c9d5fd1a6d4ae2cdd70964ffeb627fb5505247a5c
SHA512

26d159fda51fc101abdd35ecb67231f4710623178a1642ffb188db63d7ce71175738303eac2bf7dd892ac19958edf36ccde5388184670f48de6bcbb8020e4488
SSDEEP

3072:eAjbXEnoSHxkKsq+2DcjE8+SUIpX/Hdx8/FV4Wnta+UUbYiQxC3SuUM0a:eAH0oSRMJ2DBfzl0+bbYiQg9Ul

Score

N/A

Malware Config

Signatures

Files

a2611f0fb1b00d772bdd953c9d5fd1a6d4ae2cdd70964ffeb627fb5505247a5c
.exe windows x86

1b6869b5594bafe2c6f500cb75bb8fb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteFile
RtlUnwind
HeapFree
VirtualFree
GetCommandLineW
HeapDestroy
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
ExitProcess
GetVersion
GetProcessHeap
VirtualAlloc
GetLastError
TerminateProcess
SetConsoleMode
AllocConsole
HeapCreate
GetModuleFileNameW
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetStringTypeW

user32

RemoveMenu
SystemParametersInfoW
GetScrollRange
ShowScrollBar
GetDlgItemInt
SetDlgItemInt
LoadImageA
DestroyWindow
OffsetRect
SendDlgItemMessageW
EndDialog
CheckRadioButton
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetMessagePos
GetWindowLongW
GetAsyncKeyState
DefWindowProcW
GetClassNameW
CallNextHookEx
IsDialogMessageW
DispatchMessageA
SetTimer
KillTimer
LoadIconW
MessageBoxW
SetPropA
GetSystemMenu
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthW
UnhookWindowsHookEx
CreateDialogIndirectParamW
GetWindowTextW
DialogBoxIndirectParamW
GetScrollInfo
SendMessageA
SendMessageTimeoutA
SetWindowTextA
EnumWindows

advapi32

RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
CreateServiceA
DeleteService
GetTokenInformation
RegCloseKey

ole32

CoRegisterSurrogate
CoCreateInstance
CoRevokeClassObject
CoInitialize
CoUninitialize

ws2_32

connect
htons
shutdown
WSAStartup
socket
WSACleanup
send
accept
bind
closesocket
setsockopt
gethostbyaddr
gethostbyname
gethostname
getpeername
sendto
getsockname

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 448KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b6869b5594bafe2c6f500cb75bb8fb0

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

ws2_32

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 41KB - Virtual size: 40KB

.data Size: 51KB - Virtual size: 448KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 41KB - Virtual size: 40KB

.data
Size: 51KB - Virtual size: 448KB

.reloc
Size: 2KB - Virtual size: 2KB