9a56b92c8ce3c5e7e0d34a21ec5972da5341ea29ff9b549b1e4fc2cfc04ff121

Sharing

Copy URL Twitter E-mail

General

Target

9a56b92c8ce3c5e7e0d34a21ec5972da5341ea29ff9b549b1e4fc2cfc04ff121
Size

214KB
MD5

72ef54939726e98f6c0e5c14b1486f9e
SHA1

bd5bbdb501ad19e2521a8b91e26d9e993c8bdaad
SHA256

9a56b92c8ce3c5e7e0d34a21ec5972da5341ea29ff9b549b1e4fc2cfc04ff121
SHA512

ac2cbbb6c22adabfa1717b0dafc180846006c3a8088031b55221e23bdefdba71b2bcf1bcaa464e1a18f8217b1aa096437d347fc552f831f7739d88f0af7f4e7a
SSDEEP

6144:G69cJAcsowvnAOqZRPtdijcu+Np+ZDYS6PPkK0E+Y:F6nsBvnDgRDAopMDYS6nFTx

Score

N/A

Malware Config

Signatures

Files

9a56b92c8ce3c5e7e0d34a21ec5972da5341ea29ff9b549b1e4fc2cfc04ff121
.exe windows x86

1a4433beaf0966091ae02387c9f0b5c1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ord196
ord195

kernel32

CreateWaitableTimerA
GetStartupInfoA
SetFilePointer
FindFirstChangeNotificationW
SetPriorityClass
QueryPerformanceCounter
VirtualProtect
Sleep
FileTimeToLocalFileTime
EnumSystemLocalesA
OpenFile
GetComputerNameA
GetTempFileNameA
GetWindowsDirectoryA
DisconnectNamedPipe
ReleaseSemaphore

comctl32

ImageList_Remove
ImageList_AddMasked
PropertySheetW
CreateToolbarEx
ImageList_LoadImageW

gdi32

GetLayout
SetROP2
IntersectClipRect
CreatePenIndirect
AddFontResourceW
EnumFontFamiliesW
GetTextExtentPoint32W
SelectClipRgn
UnrealizeObject
GetTextExtentPointA
GetObjectW
RectInRegion
GetCharWidth32W
OffsetRgn
LPtoDP

msvcrt

wcsncpy
_controlfp
__set_app_type
__p__fmode
__p__commode
strcspn
_amsg_exit
wcstol
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
realloc
iswctype
clearerr
isalnum
vsprintf
strstr
_exit
wcsrchr
_cexit
__setusermatherr
__getmainargs

user32

InternalGetWindowText
InSendMessageEx
LoadCursorA
GetFocus
LoadAcceleratorsA
PeekMessageA
DispatchMessageA
SetSysColors
DrawIconEx
CharUpperA
CopyRect
InvalidateRgn
EndDialog
DialogBoxParamW
MonitorFromRect
DrawTextA
GetNextDlgGroupItem
GetDoubleClickTime
GetKeyboardType
InflateRect
ShowOwnedPopups
GetUpdateRgn
GetMenuItemInfoW
GetAsyncKeyState
BeginDeferWindowPos
GetTopWindow
GetMenuStringW
GetSubMenu
GetMenuState
DrawFrameControl
MessageBoxExA
IsWindowVisible
OpenIcon
ModifyMenuW
ReplyMessage

Exports

Exports

?DeleteSecurityDescriptorHdfjhjkfK@@YGKEPA_WG@Z

Sections

.text
Size: 179KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 70B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imul
Size: 512B - Virtual size: 290B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.plus
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a4433beaf0966091ae02387c9f0b5c1

Headers

File Characteristics

Imports

shell32

kernel32

comctl32

gdi32

msvcrt

user32

Exports

Exports

Sections

.text Size: 179KB - Virtual size: 178KB

.idat Size: 512B - Virtual size: 412B

.div Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 2KB

.diag_x Size: 512B - Virtual size: 28B

.diag_y Size: 512B - Virtual size: 70B

.imul Size: 512B - Virtual size: 290B

.plus Size: 512B - Virtual size: 404B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 24KB - Virtual size: 24KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 179KB - Virtual size: 178KB

.idat
Size: 512B - Virtual size: 412B

.div
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 2KB

.diag_x
Size: 512B - Virtual size: 28B

.diag_y
Size: 512B - Virtual size: 70B

.imul
Size: 512B - Virtual size: 290B

.plus
Size: 512B - Virtual size: 404B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 24KB - Virtual size: 24KB

.reloc
Size: 1KB - Virtual size: 1KB