eab5655bf4e66b3b56fe81b90462ac38fd96c27fe2bceb1d6bbb2014dae65629

Sharing

Copy URL Twitter E-mail

General

Target

eab5655bf4e66b3b56fe81b90462ac38fd96c27fe2bceb1d6bbb2014dae65629
Size

157KB
MD5

2eed746d49c006fdd6b8745476d9c901
SHA1

3876318beeb4f1d7cd38fc5b2a44dccb64557326
SHA256

eab5655bf4e66b3b56fe81b90462ac38fd96c27fe2bceb1d6bbb2014dae65629
SHA512

339f23ba29fcf65e8e63917d8d4ea0079bec20fb13a9e0100955c15bdea0ed98f96591a1cf0391be5e6e1c90775949ae93cd1b13642ca105b10adabd6bd5e304
SSDEEP

3072:KWU3aufltgNHlplNKIha1tiDECV+cb825NpI:KDlfltgNmIha1BCz8WC

Score

N/A

Malware Config

Signatures

Files

eab5655bf4e66b3b56fe81b90462ac38fd96c27fe2bceb1d6bbb2014dae65629
.exe windows x86

8ce66615be678a2159455270014a0f30

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
WriteFile
GetFileAttributesA
GetTempPathA
GetModuleFileNameA
CloseHandle
DeleteFileA
GetEnvironmentVariableA
CreateMutexA
GetLastError
lstrlenA
lstrcpyA
ReadFile
lstrcatA
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetModuleHandleA
FlushFileBuffers
SetStdHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetExitCodeProcess
GetCurrentProcessId
QueryPerformanceCounter
WaitForSingleObject
Sleep
CreateEventA
OpenMutexA
ReleaseMutex
CreateThread
GetSystemTime
PulseEvent
HeapFree
GetProcessHeap
CreateProcessA
GetTempFileNameA
OpenEventA
ExitProcess
GetTickCount
SetFileAttributesA
GetFileSize
lstrcmpA
SetFilePointer
MapViewOfFile
UnmapViewOfFile
lstrcmpiA
CreateFileMappingA
InitializeCriticalSection
LeaveCriticalSection
SetThreadPriority
CreateTimerQueueTimer
EnterCriticalSection
DeleteCriticalSection
DeleteTimerQueueTimer
ResumeThread
GetSystemDefaultLangID
GetVersionExA
GetVolumeInformationA
GetSystemDirectoryA
FindFirstFileA
FindClose
FindNextFileA
TryEnterCriticalSection
SystemTimeToFileTime
WideCharToMultiByte
MultiByteToWideChar
HeapAlloc
DeviceIoControl
DefineDosDeviceA
QueryDosDeviceA
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
GetCommandLineA
GetStartupInfoA
HeapReAlloc
HeapCreate
VirtualFree
VirtualAlloc
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapSize
SetHandleCount
GetStdHandle
GetFileType
InterlockedExchange
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
RaiseException
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW

user32

wsprintfA

advapi32

RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegEnumKeyExA
RegCloseKey

shell32

SHGetFolderPathA
SHGetSpecialFolderPathA
ord680

ws2_32

select
WSAGetLastError
recv
bind
socket
freeaddrinfo
__WSAFDIsSet
getaddrinfo
listen
accept
WSAStartup
WSACleanup
ioctlsocket
WSASocketA
send
gethostbyname
htons
inet_addr
connect
closesocket

wininet

InternetSetOptionA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

oleaut32

SysStringLen
SysFreeString

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ce66615be678a2159455270014a0f30

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ws2_32

wininet

ole32

oleaut32

Sections

.text Size: 118KB - Virtual size: 118KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 5KB - Virtual size: 281KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 11KB - Virtual size: 10KB

.text
Size: 118KB - Virtual size: 118KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 5KB - Virtual size: 281KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 11KB - Virtual size: 10KB