983e86be905d1a8f3e76dbf06f944ee028b989159d31be351a41bcf3ca06726f

Sharing

Copy URL Twitter E-mail

General

Target

983e86be905d1a8f3e76dbf06f944ee028b989159d31be351a41bcf3ca06726f
Size

149KB
MD5

2c728816ce887b366d9a6f7ba09c8f39
SHA1

df47ff7b430d4f618c759e971498679b2a99662e
SHA256

983e86be905d1a8f3e76dbf06f944ee028b989159d31be351a41bcf3ca06726f
SHA512

024c61f9147a7a0ae205c6858921f0a23c344a83ef2343a3596d6d32d09d977d035f947600d0984975de4d0971a41404ca6ab4bf29ba96349f1e4dd5e54cf05b
SSDEEP

3072:p2ifsil9UQimnMOM8f6M66FUKMmAoqvNRLPDA:pXf/nFM8f6M6nnvX

Score

N/A

Malware Config

Signatures

Files

983e86be905d1a8f3e76dbf06f944ee028b989159d31be351a41bcf3ca06726f
.exe windows x86

7d9eeb4a82d08f1a9bacbdf932cf4fb5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GlobalLock
VirtualAlloc
ReadFile
Sleep
GetModuleHandleA
VirtualFree
GlobalAlloc
GetFileSize
GetPrivateProfileStructA
FindFirstFileA
FindNextFileA
GetFileAttributesA
CreateProcessA
SetFilePointer
CreateFileA
lstrlenA
IsBadReadPtr
GetCurrentThread
CopyFileA
FindClose
WaitForSingleObject
GetVersion
WritePrivateProfileStringA
SetPriorityClass
VirtualQuery
DeleteFileA
CloseHandle
GetPriorityClass
CreateFileMappingA
VirtualLock
GlobalUnlock
LoadLibraryA
VirtualUnlock
WaitForMultipleObjects
SetThreadPriority
WriteFile
MapViewOfFile
GetComputerNameA
GetModuleFileNameA
lstrlenW
GetCommandLineA
GetProcAddress
CreatePipe
UnmapViewOfFile
GetPrivateProfileStringA
lstrcatA

user32

EnableWindow
InvalidateRect
TrackPopupMenu
FindWindowA
EmptyClipboard
GetWindowRect
GetWindowTextA
MessageBeep
SetFocus
DestroyIcon
LoadIconA
CheckDlgButton
CheckMenuRadioItem
wsprintfA
IsDlgButtonChecked
SetWindowLongA
GetActiveWindow
GetCursorPos
GetWindowDC
SetWindowTextA
CheckRadioButton
IsZoomed
ShowWindow
DestroyMenu
LoadBitmapA
EndDialog
GetSysColorBrush
AppendMenuA
MoveWindow
wvsprintfA
SetWindowPos
SetDlgItemTextA
SetForegroundWindow

dinprdim

_Snan
_Stold
_FDenorm
_Hugeval
_Strxfrm
_Dscale
_Getcoll
_Inf
_Nan
_FInf
_FSinh
_FSnan
_FDscale
_FNan
_LSinh
_LEps
_FXbig
_Xbig
_FRteps
_FDtest
_Rteps
_Mbrtowc
_Exp
_Cosh
_LDenorm
_LInf

advapi32

RegCreateKeyExA
RegCloseKey
LookupPrivilegeValueA
RegDeleteKeyA

msvcrt

asctime
realloc
free
_timezone
malloc
strchr

imagehlp

ImageRvaToSection
ImageNtHeader

comdlg32

GetOpenFileNameA

gdi32

SetBkMode
SelectObject
CreateFontIndirectA
DeleteObject

Sections

.text
Size: 135KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d9eeb4a82d08f1a9bacbdf932cf4fb5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

dinprdim

advapi32

msvcrt

imagehlp

comdlg32

gdi32

Sections

.text Size: 135KB - Virtual size: 136KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 7KB - Virtual size: 8KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 135KB - Virtual size: 136KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 7KB - Virtual size: 8KB

.rsrc
Size: 2KB - Virtual size: 4KB