18843d91a631b3cdd81d912acf61ed4c96aadd2bb09564883934ac70343fa7bb

Sharing

Copy URL Twitter E-mail

General

Target

18843d91a631b3cdd81d912acf61ed4c96aadd2bb09564883934ac70343fa7bb
Size

234KB
MD5

43a9c297717a41843a02ff5c29b06193
SHA1

79304de2389195bfda66fe02e97996700bb5ae9e
SHA256

18843d91a631b3cdd81d912acf61ed4c96aadd2bb09564883934ac70343fa7bb
SHA512

6cc3af81debcf97740463c8050870c2b6d9d63f761532c0f150c3a90289c5e25dc7764a86392a7dd9b08c48fd3d6eac2f516dd9320b29d0b145a0c8e140acf6b
SSDEEP

6144:849fJY/C+nEXsHl7XrI7C6abclYtHzlrJ//+wMmT6MFsF:849fJY6+EXsNE7C6aQlMHzllB2BF

Score

N/A

Malware Config

Signatures

Files

18843d91a631b3cdd81d912acf61ed4c96aadd2bb09564883934ac70343fa7bb
.exe windows x86

279cdc60aec2105dd44d2867eebfdf99

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

LoadImageW
DestroyWindow
InsertMenuA
SendDlgItemMessageW
IsClipboardFormatAvailable
DispatchMessageA
GetDlgItemInt
MoveWindow
ChangeMenuW
EnableScrollBar
TranslateMessage
DdeDisconnect
CloseWindow
OpenIcon
DrawCaptionTempW
CopyImage
ReleaseDC
ShowWindowAsync
GetFocus
DrawTextA
PostThreadMessageA
IsWindowEnabled
MessageBeep
GetClientRect
EndPaint
IsWindowVisible
IsIconic
TranslateAcceleratorW
CopyRect
GetKeyNameTextW
MsgWaitForMultipleObjects
MBToWCSEx
DestroyAcceleratorTable
GetKeyState
SwapMouseButton
SetMessageQueue
GetSysColorBrush
EnumWindowStationsW
ImpersonateDdeClientWindow
DispatchMessageW
GetDC
BeginPaint
GetWindowRect
GetMessageW
ValidateRect
DdeSetQualityOfService
ShowOwnedPopups
IsWindowUnicode
DrawMenuBar
HideCaret
ShowCursor

imagehlp

ImageDirectoryEntryToData

msvcrt

_vsnprintf
printf
tolower
rand
wcscmp
fgetwc
vfprintf

kernel32

MoveFileExA
GetHandleInformation
TlsSetValue
CloseProfileUserMapping
GetOEMCP
GetSystemDirectoryA
VerifyConsoleIoHandle
lstrcpynA
VirtualProtect
GetModuleFileNameA
lstrlenW
IsDBCSLeadByte
GetSystemTimeAdjustment
OpenEventW
SetConsoleActiveScreenBuffer
ConnectNamedPipe
InitAtomTable
CreateSemaphoreA
lstrcpynW
GetModuleHandleW
HeapAlloc
TlsFree
GetAtomNameW
GetFileAttributesExW
ReleaseMutex
TlsAlloc
AddAtomW
GetProfileIntW
SetConsoleMode
UnregisterWaitEx
GetConsoleDisplayMode
lstrcmpA
GetTempPathA
GetStartupInfoA
GetProfileStringA
SetConsolePalette
FindAtomW
LoadLibraryA
SizeofResource
EscapeCommFunction
GetStringTypeExW
WaitForDebugEvent
GetProfileSectionA
GetNextVDMCommand
lstrlenA
GetCommandLineW
TerminateThread
GetConsoleAliasesW
HeapFree
GetTimeFormatW
GetComputerNameA
WaitForSingleObject
GetShortPathNameW
TlsGetValue
OpenSemaphoreW
GetAtomNameA
GetSystemTime
GetVolumeInformationW
GetTickCount
lstrcpyA

gdi32

CreateICW
CreatePolygonRgn
ExtCreatePen
RoundRect
UnrealizeObject
GetBitmapDimensionEx
ExtEscape
GetArcDirection
SetBkColor
GetObjectW
SetLayout
DeleteDC
CreatePen
EndPath
DeleteMetaFile
SetTextAlign
CreateBitmapIndirect
SelectPalette
PlayMetaFile
CreateSolidBrush
EndDoc
DeleteObject

ntdll

strcpy
memset

Exports

Exports

WnlDpnusgovNVc@16
QkfUmqntlebndpj@12
LbtSkverItlq@12
_Append_Text_Value@12
_Clear_DataText@8
TbyKhqGpwllghs@4

Sections

.code
Size: - Virtual size: 279KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 137B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 538B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

279cdc60aec2105dd44d2867eebfdf99

Headers

File Characteristics

Imports

user32

imagehlp

msvcrt

kernel32

gdi32

ntdll

Exports

Exports

Sections

.code Size: - Virtual size: 279KB

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 7KB - Virtual size: 7KB

.tls Size: 512B - Virtual size: 137B

.CRT Size: 512B - Virtual size: 8B

.rsrc Size: 250KB - Virtual size: 250KB

.reloc Size: 1024B - Virtual size: 538B

.code
Size: - Virtual size: 279KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 7KB - Virtual size: 7KB

.tls
Size: 512B - Virtual size: 137B

.CRT
Size: 512B - Virtual size: 8B

.rsrc
Size: 250KB - Virtual size: 250KB

.reloc
Size: 1024B - Virtual size: 538B