0b4fa2b8fc4a39e443f60f5b9a354a0efb31fbcf730ab1777c318e3e69a65267

Sharing

Copy URL

Twitter E-mail

General

Target

0b4fa2b8fc4a39e443f60f5b9a354a0efb31fbcf730ab1777c318e3e69a65267
Size

99KB
MD5

3a9d1dcad1176717711eb92b25f7d6b0
SHA1

ba1444854781a3895d0c0d852f06b01310acc180
SHA256

0b4fa2b8fc4a39e443f60f5b9a354a0efb31fbcf730ab1777c318e3e69a65267
SHA512

f1d1e9767d9ffea33a73a167bebc8fd9e68d8d3cebbecc88556bb736bd9df55876b0ba7f7d22767aedbe224a69460ae7d741490942010eea3d74e248482dff62
SSDEEP

1536:URZWz69zgcHSMnb81SAt7KQ1cD2qA8I0xHaZZCjYppBWl80K:URkC81P7KPqqA8xH8Cj2pc80K

Score

N/A

Malware Config

Signatures

Files

0b4fa2b8fc4a39e443f60f5b9a354a0efb31fbcf730ab1777c318e3e69a65267
.exe windows x86

a1c40e24233354d8a683bf46b173eed3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
wvsprintfA

urlmon

URLOpenBlockingStreamA
CopyBindInfo
URLDownloadToCacheFileA

ole32

DoDragDrop
CoRegisterMessageFilter
CoGetCallContext
CoRevokeMallocSpy

ws2_32

send
ntohl
ntohs
inet_addr
gethostbyaddr
getprotobynumber
connect
getsockname

opengl32

glVertex4d
glBlendFunc
glRasterPos4dv
glCopyPixels
glRecti
glFogfv
glTexCoord3s
glTexCoord3fv

crypt32

CryptFindOIDInfo
CryptStringToBinaryW
CertGetIntendedKeyUsage
CryptUnregisterOIDInfo
CertVerifyValidityNesting

mpr

WNetGetResourceParentW
WNetDisconnectDialog1W
WNetGetUserW
WNetGetProviderNameA
WNetCancelConnectionW
WNetGetResourceInformationA

kernel32

LCMapStringW
RtlUnwind
LoadLibraryW
Sleep
HeapFree
IsValidCodePage
GetOEMCP
MultiByteToWideChar
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
GetStringTypeW
HeapAlloc
HeapReAlloc
HeapSize
GetACP
IsDebuggerPresent
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
WriteFile
WriteConsoleA
GetStdHandle
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
InterlockedIncrement
GetModuleHandleW
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
GetProcAddress
IsProcessorFeaturePresent
ExitProcess

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1c40e24233354d8a683bf46b173eed3

Headers

DLL Characteristics

File Characteristics

Imports

user32

urlmon

ole32

ws2_32

opengl32

crypt32

mpr

kernel32

Sections

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 3KB - Virtual size: 7KB

.rsrc Size: 62KB - Virtual size: 61KB

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 3KB - Virtual size: 7KB

.rsrc
Size: 62KB - Virtual size: 61KB