79a08ae651b3e59fa2317424d90e002ee986ae2c8bba90a410dc860ae472ebe8

Sharing

Copy URL Twitter E-mail

General

Target

79a08ae651b3e59fa2317424d90e002ee986ae2c8bba90a410dc860ae472ebe8
Size

818KB
MD5

32d98380d9e3eee2f0ac9b6b1e6084d0
SHA1

2f5d26e0e19a22b3e89ccadef8501013a110db0e
SHA256

79a08ae651b3e59fa2317424d90e002ee986ae2c8bba90a410dc860ae472ebe8
SHA512

ffb9ff9269013315284bd54123408485d8bb991cee4e94fb42ce551c6051e17c043b3b6a17e09eded23f96d97831119ff6a031d85d943eb1b6825afddd67ed99
SSDEEP

6144:HLfNfzWpo3LEbzbyzEZaLMbx8tufqF/C+LgX:RfzEo3LEbizQaLA2r/dI

Score

N/A

Malware Config

Signatures

Files

79a08ae651b3e59fa2317424d90e002ee986ae2c8bba90a410dc860ae472ebe8
.exe windows x86

8b8b409bbc4ba1688b96a500572b56b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileW
CreateToolhelp32Snapshot
DeleteFileW
FindFirstVolumeMountPointW
FindResourceW
FreeLibrary
GetCommandLineW
GetCurrentProcess
GetModuleFileNameW
GetModuleHandleW
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
LoadLibraryExW
LoadResource
MoveFileExW
MultiByteToWideChar
OutputDebugStringA
RaiseException
RequestWakeupLatency
SetUnhandledExceptionFilter
SizeofResource
Sleep
TerminateProcess
UnhandledExceptionFilter
WritePrivateProfileSectionA
WritePrivateProfileSectionW
lstrcmpiW
lstrlenW
CopyFileA
CreateEventA
CreateFileA
CreateFileMappingW
CreateThread
DeleteFileA
DisableThreadLibraryCalls
EnumResourceLanguagesA
FindClose
FindFirstFileA
FindResourceExW
GetConsoleTitleW
GetDiskFreeSpaceA
GetDriveTypeA
GetFileAttributesA
GetFileSize
GetLocalTime
GetLocaleInfoW
GetModuleFileNameA
GetNumberFormatW
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetSystemDefaultUILanguage
GetSystemDirectoryA
GetSystemInfo
GetTickCount
GetUserDefaultUILanguage
GetVersionExA
GetVolumeInformationA
GetWindowsDirectoryA
InterlockedIncrement
IsDBCSLeadByte
LoadLibraryA
LocalAlloc
LocalFree
MapViewOfFile
MulDiv
ReadFile
ReleaseMutex
ResetEvent
UnmapViewOfFile
WaitForSingleObject
WritePrivateProfileStringA
lstrcmpA
lstrcmpiA
lstrlenA
VirtualAlloc
FindFirstVolumeA
GetCurrentDirectoryW
GetProcessWorkingSetSize
QueueUserAPC
SetSystemPowerState
WriteFile
CompareStringW
ConnectNamedPipe
CreateWaitableTimerW
DebugBreak
FatalAppExitA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetPrivateProfileIntW
GetThreadLocale
GetUserDefaultLCID
LocalFileTimeToFileTime
GetConsoleAliasesW
GetSystemDefaultLangID
WritePrivateProfileStringW
GetCurrentProcessId
GetCurrentThreadId
GetStartupInfoW
GetSystemTimeAsFileTime
QueryPerformanceCounter
lstrcpy
GetLocaleInfoA
GetLastError
SetConsoleCtrlHandler
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapReAlloc
HeapFree
HeapAlloc
GetConsoleCP
ReadConsoleInputA
ReadConsoleInputW
SetConsoleMode
GetConsoleMode
SetFileTime
SystemTimeToFileTime
ExitProcess
DeleteCriticalSection
VirtualProtect
VirtualQuery
LeaveCriticalSection
EnterCriticalSection
TlsAlloc
SetLastError
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
RtlUnwind
GetTimeFormatA
GetDateFormatA
GetCPInfo
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
PeekConsoleInputA
GetNumberOfConsoleInputEvents
GetConsoleOutputCP
WriteConsoleW
GetExitCodeProcess
CreateProcessA
SetStdHandle
HeapSize
InitializeCriticalSection
GetTimeZoneInformation
SetFilePointer
WriteConsoleA
SetEndOfFile
FlushFileBuffers
CreateProcessW
GetFileAttributesW
CompareStringA
SetEnvironmentVariableA
SetEnvironmentVariableW

oleaut32

VarI4FromDate
VarUI1FromR8
SafeArrayAllocDescriptor
VarBstrFromUI4
VarDecFromR4
VarDateFromDisp
VarDateFromR4
VarPow
VarWeekdayName

user32

CallMsgFilterW
CharNextW
CloseDesktop
CreateWindowStationW
DestroyCaret
InSendMessageEx
RegisterClassExW
CharNextA
CharPrevA
DispatchMessageA
EndTask
FindWindowExA
GetForegroundWindow
GetMenuItemInfoW
GetProcessDefaultLayout
LoadStringA
MessageBeep
MessageBoxA
MsgWaitForMultipleObjects
PeekMessageA
SetForegroundWindow
TranslateMessage
WINNLSGetIMEHotkey
CreateDialogIndirectParamW
DdeQueryStringW
GetClassNameA
GetMessageW
GetWindowTextA
MapVirtualKeyW
SendIMEMessageExW
SendMessageW
WinHelpA
CheckDlgButton
DeleteMenu
EndDialog
GetCaretBlinkTime
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetFocus
GetSystemMenu
GetWindowLongW
GetWindowRect
InvalidateRect
IsDlgButtonChecked
LoadStringW
PostMessageW
ScreenToClient
SendDlgItemMessageW
SetDlgItemInt
SetFocus
SetWindowLongW
SetWindowTextW
WinHelpW

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 564KB - Virtual size: 561KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8b8b409bbc4ba1688b96a500572b56b7

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

Sections

.text Size: 160KB - Virtual size: 159KB

.rdata Size: 564KB - Virtual size: 561KB

.data Size: 88KB - Virtual size: 99KB

.text
Size: 160KB - Virtual size: 159KB

.rdata
Size: 564KB - Virtual size: 561KB

.data
Size: 88KB - Virtual size: 99KB