65674b7017a3637153a3eea2446f79e767faf5139b6478811132fe0de8c82323

Sharing

Copy URL Twitter E-mail

General

Target

65674b7017a3637153a3eea2446f79e767faf5139b6478811132fe0de8c82323
Size

385KB
MD5

2e6d79659b2e8f3efefd8344ab6e3ea0
SHA1

8c71241176ba2f00f48266ffb824ab2f83542437
SHA256

65674b7017a3637153a3eea2446f79e767faf5139b6478811132fe0de8c82323
SHA512

153c0a59e299f0ac64015ebcb8c7c7c8a0982db354cda568aaeb9e0d5446b4fd459d5d6c30f38f4e05e176e47a79a23232f967817f161dc7fb8046e8bc410628
SSDEEP

6144:ia+blm992/2YB8/Ibo3rG7j0bF8/mDo0kVaj:iaF9lYq/IwrG7QbF8/Gk4j

Score

N/A

Malware Config

Signatures

Files

65674b7017a3637153a3eea2446f79e767faf5139b6478811132fe0de8c82323
.exe windows x86

c7af808baf999d5dca7a7f785fac6e96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
WaitForSingleObject
SetEvent
FreeLibrary
CloseHandle
Sleep
DeleteCriticalSection
VirtualFree
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
InterlockedExchange
CancelIo
GetLastError
ResetEvent
lstrcmpA
GetPrivateProfileStringA
GetVersionExA
lstrcatA
MultiByteToWideChar
lstrlenA
DeleteFileA
CreateDirectoryA
GetFileAttributesA
lstrcpyA
GetDriveTypeA
GetDiskFreeSpaceExA
GetVolumeInformationA
GetLogicalDriveStringsA
FindClose
LocalFree
LocalReAlloc
LocalAlloc
GetFileSize
ReadFile
SetFilePointer
InitializeCriticalSection
lstrcmpiA
GlobalFree
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalSize
GetTickCount
GetStartupInfoA
WaitForMultipleObjects
TerminateProcess
OpenProcess
GetCurrentThreadId
CreateToolhelp32Snapshot
GetSystemInfo
GetComputerNameA
Process32Next
Process32First
GetSystemDirectoryA
GetModuleFileNameA
OpenEventA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetStdHandle
FlushFileBuffers
GetTimeZoneInformation
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
IsBadCodePtr
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetCPInfo
UnhandledExceptionFilter
HeapCreate
HeapDestroy
GetEnvironmentVariableA
HeapReAlloc
HeapAlloc
SetUnhandledExceptionFilter
HeapFree
SetLastError
TlsAlloc
InterlockedIncrement
OutputDebugStringA
InterlockedDecrement
WriteFile
GetStdHandle
RtlUnwind
RaiseException
IsBadWritePtr
IsBadReadPtr
HeapValidate
CreateThread
TlsSetValue
TlsGetValue
ExitThread
FindFirstFileA
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitProcess
GetCurrentProcess
GetModuleHandleA
GetCommandLineA
GetVersion
DebugBreak

user32

SetRect
DispatchMessageA
TranslateMessage
CharLowerA
CloseWindow
IsWindow
PostMessageA
OpenDesktopA
OpenInputDesktop
GetThreadDesktop
GetUserObjectInformationA
SetThreadDesktop
CloseDesktop
IsWindowVisible
GetWindowThreadProcessId
ExitWindowsEx
GetCursorPos
GetCursorInfo
ReleaseDC
GetDesktopWindow
GetDC
DestroyCursor
mouse_event
SetCursorPos
WindowFromPoint
SetCapture
MapVirtualKeyA
keybd_event
GetSystemMetrics
SendMessageA
OpenClipboard
GetClipboardData
CloseClipboard
EmptyClipboard
SetClipboardData
LoadCursorA
MessageBoxA
GetWindowTextA
CharNextA
wsprintfA
GetMessageA

wtsapi32

WTSQuerySessionInformationA
WTSFreeMemory

Sections

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 184KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c7af808baf999d5dca7a7f785fac6e96

Headers

File Characteristics

Imports

kernel32

user32

wtsapi32

Sections

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 184KB - Virtual size: 192KB

Shared Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 184KB - Virtual size: 192KB

Shared
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB