8741a06212e37e6b8e01c69a2b4d81a430abcbdde4b741aa6d50af0ea128f068

Sharing

Copy URL Twitter E-mail

General

Target

8741a06212e37e6b8e01c69a2b4d81a430abcbdde4b741aa6d50af0ea128f068
Size

8.3MB
MD5

70d453bac67cadd1f1d817b536398763
SHA1

e33581b2c571949c6d5951c48d1d80cc98afa484
SHA256

8741a06212e37e6b8e01c69a2b4d81a430abcbdde4b741aa6d50af0ea128f068
SHA512

4f36de094d5a2ab1d912400a54436d033887a1b33c2bf2a48ebac9bc8130b54e7b68ad6b10cf98b983771889f935369e7d2c68ccff6bc09767f8d522b54ad9ba
SSDEEP

49152:MXxxDoyCKlDTLTshybusJ0uA5roFtPchu5ttlm:MXx1HLTFRXOorchu5tTm

Score

N/A

Malware Config

Signatures

Files

8741a06212e37e6b8e01c69a2b4d81a430abcbdde4b741aa6d50af0ea128f068
.exe windows x86

70f8b9fbe4a1307bad194d19e009e47a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenEventW
Sleep
OpenMutexW
GetModuleHandleA
GetProcessHeap
GetTickCount
IsProcessorFeaturePresent
lstrlenW
InterlockedIncrement
InterlockedDecrement
GetProcAddress
lstrcmpiW
GetCurrentThreadId
SetLastError
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadLibraryExW
GetModuleFileNameW
GetCommandLineW
WideCharToMultiByte
FindResourceExW
LoadLibraryA
lstrlenA
VirtualAlloc
VirtualFree
GetModuleHandleW
OpenMutexA
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
CreateMutexA
CloseHandle
GetVersion
WaitForSingleObject
RaiseException
GetLastError
FindResourceW
LoadResource
LockResource
GetCurrentProcess
DeleteCriticalSection
GetEnvironmentStringsW
FreeEnvironmentStringsW
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
GetStdHandle
WriteFile
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapFree
HeapAlloc
HeapDestroy
HeapReAlloc
HeapSize
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualProtect
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
GetStartupInfoW
HeapCreate
ExitProcess

user32

DefWindowProcW
MessageBoxW
GetForegroundWindow
CharNextW
DestroyWindow
UnregisterClassA

advapi32

RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegDeleteKeyW

ole32

CoCreateInstance
CoTaskMemFree
CoUninitialize
CoInitialize
CoTaskMemRealloc
CoTaskMemAlloc

oleaut32

VarUI4FromStr

comctl32

InitCommonControlsEx

Sections

.text
Size: 746KB - Virtual size: 746KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 419KB - Virtual size: 419KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

70f8b9fbe4a1307bad194d19e009e47a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

comctl32

Sections

.text Size: 746KB - Virtual size: 746KB

.rdata Size: 22KB - Virtual size: 21KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 419KB - Virtual size: 419KB

.text
Size: 746KB - Virtual size: 746KB

.rdata
Size: 22KB - Virtual size: 21KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 419KB - Virtual size: 419KB