53c42a9feb3533e7173a50c6ef0052391d21094a1b2e5bebb3106f2920050388

Sharing

Copy URL Twitter E-mail

General

Target

53c42a9feb3533e7173a50c6ef0052391d21094a1b2e5bebb3106f2920050388
Size

156KB
MD5

08f37112067d07bf377b0dcce66b573b
SHA1

ccfccf4fef477805bad59e70967f61e2296858ce
SHA256

53c42a9feb3533e7173a50c6ef0052391d21094a1b2e5bebb3106f2920050388
SHA512

d85c5af96a586f5496a0afdea9de600eddb0bb651a2f0841e96217759b08314a140b5d555d1cb33f51d7bd2a5279d05ebf20d30ddf976bed9767691d9ed3b4f2
SSDEEP

3072:jVoqFhru895qcjEnq5j68L5CIErGrmUbDtsn:BFEAD9Cdro/bDen

Score

N/A

Malware Config

Signatures

Files

53c42a9feb3533e7173a50c6ef0052391d21094a1b2e5bebb3106f2920050388
.exe windows x86

4493614fc106e53758b317a3cf69ed66

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
TlsAlloc
GetTempFileNameA
DeleteCriticalSection
GlobalFree
SetStdHandle
SizeofResource
GetFileAttributesW
SetHandleCount
Sleep
InterlockedDecrement
DeleteFileA
GetCommandLineA
VirtualFree
IsBadWritePtr
Sleep
GetProfileIntA
LeaveCriticalSection
SetPriorityClass
LocalFree
CreateProcessW
LockResource
TlsGetValue
FormatMessageA
FindClose
MultiByteToWideChar
GetLogicalDrives
SetUnhandledExceptionFilter
GetStartupInfoW
SetFileTime
IsBadReadPtr
SetFileAttributesW
HeapAlloc
GetStringTypeA
Beep
GetCommandLineW
GlobalAlloc
SearchPathA
IsBadCodePtr

odbcapi3

_Getcvt
_FNan
_FDtest
_Exp
_Hugeval
_Xbig

user32

InvalidateRect
GetWindowThreadProcessId
TranslateMDISysAccel
CopyRect
GetMenuItemCount
SetRect
IsWindow
CreateCaret
GetCursor
RemoveMenu
GetParent
GetWindowTextA
GetMenu
FrameRect
GetCursorPos
DrawIcon
DefFrameProcA
GetKeyboardLayoutList
DestroyIcon
RegisterClassExW
CallWindowProcA
GetMessageTime
ShowCursor
OffsetRect
GetNextDlgTabItem
ChangeDisplaySettingsExA
TranslateMessage
DrawMenuBar
GetFocus
CreateMenu
KillTimer
SetActiveWindow
ShowCaret
RedrawWindow
LoadImageA
SetCaretPos
DefMDIChildProcW
MessageBeep
SetCapture
EndPaint

ntdll

ZwSetEvent
RtlCancelTimer
RtlCompareMemory
NtQueryInformationFile
NtQueryValueKey
NtProtectVirtualMemory
ZwCreateTimer

gdi32

GetOutlineTextMetricsA
GetViewportOrgEx
SaveDC
PlayMetaFileRecord
CreatePatternBrush
SetWindowOrgEx
GetRasterizerCaps
GetNearestColor
GetFontData
GetTextFaceA
SetBkColor
GetPixel
GetWinMetaFileBits
DeleteObject
SelectObject
Ellipse
GetBitmapBits
GetTextAlign
Escape
SetMapMode
BitBlt
SetWindowExtEx
GetSystemPaletteUse
LPtoDP

ole32

OleDuplicateData
OleRegEnumVerbs
OleIsCurrentClipboard
OleQueryLinkFromData
WriteClassStm
OleCreateMenuDescriptor
StringFromGUID2
CoIsOle1Class
StgOpenStorageOnILockBytes
CoGetMalloc
CreateGenericComposite
OleCreateEmbeddingHelper

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 211KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4493614fc106e53758b317a3cf69ed66

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

odbcapi3

user32

ntdll

gdi32

ole32

Sections

.text Size: 16KB - Virtual size: 16KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 211KB - Virtual size: 212KB

.text
Size: 16KB - Virtual size: 16KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 211KB - Virtual size: 212KB