2f51f2a5fa108d3028a76dc0e8eda871eb5d559603ac18dda4d988e6b1af2d90

Sharing

Copy URL Twitter E-mail

General

Target

2f51f2a5fa108d3028a76dc0e8eda871eb5d559603ac18dda4d988e6b1af2d90
Size

142KB
MD5

2aa12b552e12123ef0ae696928810ab0
SHA1

d7f541313e84c547fdd73e6874c2a194249d3518
SHA256

2f51f2a5fa108d3028a76dc0e8eda871eb5d559603ac18dda4d988e6b1af2d90
SHA512

a2f556a7bba71413e57aa5582bfdb3d125b3f0cbeaed82e4a95446e10215851c0c04d42ca57d3c364e7ee0cce6fc416332eba0fcece6bcc8c51f85ffbc6d4562
SSDEEP

3072:moUo51/8NoeTrgXbqZzFrlzK+Lb+O89D/SZDJ8Qfdie1wMIrA:moUx0WH5W+LVJJzli7

Score

N/A

Malware Config

Signatures

Files

2f51f2a5fa108d3028a76dc0e8eda871eb5d559603ac18dda4d988e6b1af2d90
.exe windows x86

f64a69e7e78be4fd02cf07eabeeb638d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RtlUnwind
GetUserDefaultLCID
GetTempPathW
GetStartupInfoW
GetDateFormatW
GetStringTypeW
GetPrivateProfileStringW
InterlockedCompareExchange
LeaveCriticalSection
SetHandleCount
QueryPerformanceCounter
OpenEventW
HeapAlloc
HeapDestroy
SizeofResource
GetEnvironmentStringsW
GetStdHandle
WriteConsoleA
FileTimeToSystemTime
LockResource
GetTimeFormatA
LoadLibraryExW
GetPrivateProfileIntW
InterlockedDecrement
LCMapStringW
GetCurrentProcess
GetOEMCP
SetUnhandledExceptionFilter
CopyFileW
InterlockedExchange
DeleteCriticalSection
GetFileAttributesExW
IsValidCodePage
lstrcpynA
LoadResource
GetSystemDefaultLangID
InitializeCriticalSection
GetFileAttributesW
GetCurrentThread
GetModuleFileNameW
GetCPInfo
FlushInstructionCache
GetFileType
WritePrivateProfileStringW
FindResourceW
GetStringTypeA
GlobalUnlock
lstrcmpW
GetConsoleOutputCP
GetProcAddress
LCMapStringA
UnhandledExceptionFilter
LocalAlloc
GetDateFormatA
EnumSystemLocalesA
CreateFileA
GlobalSize
RaiseException
LoadLibraryW
TlsGetValue
lstrcpynW
WideCharToMultiByte
WaitForSingleObject
WinExec
SetLastError
SetStdHandle
InterlockedIncrement
GetModuleHandleW
GetCurrentProcessId
GetCommandLineW
WritePrivateProfileSectionW
MulDiv
lstrlenA
ExpandEnvironmentStringsA
TlsAlloc
lstrcmpiW
VirtualFree
FormatMessageW
LoadLibraryA
OutputDebugStringW
GetModuleFileNameA
GetConsoleCP
GlobalAlloc
FindAtomA
LoadLibraryExA
GetVersion
GetLastError
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
FreeLibrary
lstrcpyW
HeapReAlloc
ExitProcess
ReadFile
FreeEnvironmentStringsW
WaitForMultipleObjects
GetVersionExW
LocalFree
SetConsoleCtrlHandler
VirtualQuery
CreateThread
GetStartupInfoA
CompareStringA
SystemTimeToTzSpecificLocalTime
lstrlenW
GlobalLock
GetComputerNameW
lstrcatW
HeapSize
GetCurrentThreadId
GetFileSize
FindFirstChangeNotificationW
WriteConsoleW
GetConsoleMode
ResetEvent
IsProcessorFeaturePresent
CreateFileW
EnterCriticalSection
CloseHandle
GetTempFileNameW
ExpandEnvironmentStringsW
CompareStringW
Sleep
MultiByteToWideChar
HeapFree
GetModuleHandleA
GetWindowsDirectoryW
TlsSetValue
HeapCreate
VerLanguageNameW
FindNextChangeNotification
GetSystemDirectoryW
IsValidLocale
DebugBreak

user32

LoadImageW
GetClassNameW
GetMenuItemInfoW
LoadAcceleratorsW
IsChild
GetDlgItemTextW
GetWindowTextW
GetActiveWindow
PeekMessageW
GetClassInfoW
UnhookWindowsHookEx
KillTimer
ClientToScreen
SetWindowPos
DefWindowProcW
MessageBoxW
GetSysColorBrush
ReleaseCapture
SetCapture
BringWindowToTop
GetDlgItemInt
RegisterClassExW
RedrawWindow
SystemParametersInfoW
LoadCursorW
PostQuitMessage
MonitorFromWindow
DragDetect
CreateWindowExW
GetMenuDefaultItem
SendMessageW
CreatePopupMenu
FillRect
DrawFocusRect
DefMDIChildProcW
GetMenu
DeferWindowPos
GetSystemMenu
FindWindowW
RegisterWindowMessageW
EndDeferWindowPos
IntersectRect
PostMessageW
SetWindowsHookExW
GetCursorPos
TranslateMDISysAccel
GetMessageW
MapWindowPoints
TrackPopupMenuEx
GetDoubleClickTime
RegisterClassW
GetClassLongW
GetWindowRect
GetCapture
MoveWindow
CloseClipboard
ScrollWindowEx
ModifyMenuW
DialogBoxParamW
SetMenuDefaultItem
GetWindowThreadProcessId
GetFocus
IsMenu
CreateCaret
SetMenuItemInfoW
CallWindowProcW
UnregisterClassW
BeginDeferWindowPos
SetDlgItemTextW
GetWindowLongW
GetMonitorInfoW
SetFocus
IsWindowVisible
ShowScrollBar
DefFrameProcW
FrameRect
EnableWindow
GetWindowPlacement
OffsetRect
GetMessagePos
CharLowerW
LoadIconW
IsWindowEnabled
CharNextW
IsClipboardFormatAvailable
EmptyClipboard
DrawMenuBar
wvsprintfW
InflateRect
EndPaint
ScreenToClient
GetParent
GetWindowLongA
EndDialog
SetWindowTextW
InsertMenuW
GetSystemMetrics
LockWindowUpdate
DestroyCaret
AppendMenuW
TranslateMessage
OpenClipboard
GetWindow
TrackPopupMenu
LoadMenuW
UnregisterClassA
UpdateWindow
GetWindowTextLengthW
SetTimer
SetDlgItemInt
MessageBeep
GetDesktopWindow
InvalidateRect
DrawEdge
SetClipboardData
DrawFrameControl
RemoveMenu
SetMenu
SetScrollInfo
SetForegroundWindow
GetWindowDC
DestroyWindow
EqualRect
SetRectEmpty
GetDC
CopyRect
ReleaseDC
DestroyMenu
EnableMenuItem
GetClientRect
GetScrollInfo
BeginPaint
GetMenuStringW
LoadStringW
GetMenuItemID
GetDlgCtrlID
CallNextHookEx
GetKeyState
SetParent
DispatchMessageW
WindowFromPoint
SetCaretPos
PtInRect
SetCursor
LoadStringA
TranslateAcceleratorW
SetScrollPos
GetSubMenu
RegisterClipboardFormatW

gdi32

PatBlt
GetStockObject
SaveDC
DeleteDC
CreateDIBSection
GetDeviceCaps
GetClipBox
CreateSolidBrush
CreateFontIndirectW
CreateBitmap
CreatePalette
Polygon
SetBrushOrgEx
SetTextColor
CreateCompatibleDC
GetViewportOrgEx
CreateCompatibleBitmap
SetWindowOrgEx
LineTo
SetPolyFillMode
GetClipRgn
TextOutW
DeleteObject
CreatePen
CreatePatternBrush
MoveToEx
ExtTextOutW
GetTextExtentPointW
SetViewportOrgEx
BitBlt
CreateFontW
GetTextExtentPoint32W
RestoreDC
SetBkColor
CreateRectRgn
GetObjectW
Rectangle
GetTextMetricsW
RealizePalette
SelectClipRgn
SelectObject
Polyline
LPtoDP
SetBkMode
DPtoLP
IntersectClipRect
SelectPalette

oleaut32

SysFreeString
VarDecCmp
VarDecFromStr
VarUI4FromStr
SystemTimeToVariantTime
VarR8FromStr
VarI4FromStr

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

wsock32

htons
send
WSAAsyncSelect
socket
getsockname
connect
getpeername
gethostbyname
listen
WSAGetLastError
ntohs
inet_addr
WSASetLastError
accept
ioctlsocket
recv
closesocket
bind
shutdown

msvcrt

_i64toa
_purecall
_initterm
__set_app_type
exit
fclose
strchr
_exit
_XcptFilter
_controlfp
_strnicmp
_ftol
atol
__setusermatherr
__p__fmode
_adjust_fdiv
time
__p__commode
__dllonexit
localtime
_acmdln
__getmainargs
_onexit
fwrite
_except_handler3
_setmbcp
wcslen
rand
_stricmp
sprintf
memmove
strncmp
fopen
atoi
__CxxFrameHandler

Sections

.text
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f64a69e7e78be4fd02cf07eabeeb638d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

oleaut32

version

wsock32

msvcrt

Sections

.text Size: 113KB - Virtual size: 113KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 6KB - Virtual size: 43KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 113KB - Virtual size: 113KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 6KB - Virtual size: 43KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 6KB - Virtual size: 6KB