858dc72646a52b087fd212d6daa58484e100319fbf0395bb066107dbdc34315c

Sharing

Copy URL Twitter E-mail

General

Target

858dc72646a52b087fd212d6daa58484e100319fbf0395bb066107dbdc34315c
Size

190KB
MD5

4162fa4a6a71986f357438ea97f82e07
SHA1

7d6bcaa2a29b9d3c65b3cecd54d6ea87a928cb15
SHA256

858dc72646a52b087fd212d6daa58484e100319fbf0395bb066107dbdc34315c
SHA512

33a6e9d7000427ad82719abf6c67ecaddd9161923f8a399edae4764b798acc85170847eb5116a6cb58f95a07f951f49e48fad636a12a87d01bc50f62a8ca837b
SSDEEP

3072:t7YekTFK8xGpGlGNJJA51i2enrD31XeMOyyZdZ/8cGYjelHw46KZdN6VsYGofR2D:WpK8xGqoW9C+83ZoEyZUIbFTk5

Score

N/A

Malware Config

Signatures

Files

858dc72646a52b087fd212d6daa58484e100319fbf0395bb066107dbdc34315c
.exe windows x86

6e42d7e395271e3f517c056bce53998c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCloseKey

kernel32

lstrcmpW
GetTickCount
CloseHandle
GetLastError
CreateMutexW
HeapSetInformation
GetModuleHandleW
FormatMessageW
LocalFree
LocalAlloc
lstrlenW
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
GetStartupInfoA
InterlockedCompareExchange
Sleep
InterlockedExchange
UnhandledExceptionFilter

gdi32

SetBkColor
GetStockObject
SelectObject
GetTextExtentPoint32W
LPtoDP

user32

PostQuitMessage
EndPaint
FillRect
GetSysColorBrush
DrawIcon
BeginPaint
LoadIconW
TranslateAcceleratorW
IsDialogMessageW
GetMessageW
LoadAcceleratorsW
GetDlgItemTextW
ShowWindow
CreateDialogParamW
RegisterClassW
GetActiveWindow
DefDlgProcW
FindWindowW
EnableWindow
GetDlgItem
SendMessageW
SetDlgItemTextW
LoadStringW
EndDialog
MessageBoxW
DestroyWindow
WinHelpW
SendDlgItemMessageW
GetWindowRect
UpdateWindow
IsIconic
GetSysColor
GetFocus
GetParent
EnableMenuItem
IsClipboardFormatAvailable
GetClipboardData
SetForegroundWindow
TranslateMessage
DispatchMessageW
PeekMessageW
GetWindowTextLengthW
PostMessageW
SetFocus
CheckDlgButton
GetSystemMetrics
SetWindowPos
GetClientRect
GetDC
ReleaseDC
LoadCursorW
DialogBoxParamW

msvcrt

_controlfp
_except_handler4_common
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_amsg_exit
_initterm
_acmdln
exit
_XcptFilter
_exit
_cexit
__getmainargs
_wtoi
_itow
memset
wcscspn
wcsspn
memmove
_vsnwprintf
_ismbblead

shell32

ShellAboutW

tapi32

lineShutdown
lineRegisterRequestRecipient
lineGetDevCapsW
lineNegotiateAPIVersion
lineGetAddressCapsW
lineDeallocateCall
lineDrop
lineGetTranslateCapsW
lineTranslateAddressW
lineTranslateDialogW
lineGetAppPriorityW
lineSetAppPriorityW
lineConfigDialogW
lineInitializeExW
lineMakeCallW
lineOpenW
lineGetRequestW
lineClose

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

PACK
Size: 160KB - Virtual size: 416KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6e42d7e395271e3f517c056bce53998c

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

msvcrt

shell32

tapi32

Sections

.text Size: 22KB - Virtual size: 22KB

.data Size: 512B - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 1KB

PACK Size: 160KB - Virtual size: 416KB

.text
Size: 22KB - Virtual size: 22KB

.data
Size: 512B - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 1KB

PACK
Size: 160KB - Virtual size: 416KB