f9630f18bab4a8c5d1f59bcebb0a7378227dd688e225395f7c38ce0e7325aa85

Sharing

Copy URL Twitter E-mail

General

Target

f9630f18bab4a8c5d1f59bcebb0a7378227dd688e225395f7c38ce0e7325aa85
Size

234KB
MD5

6f3f7615f46e388d5d1d5499fcae88f7
SHA1

f84bedafac80b3ef52efb2fe0f7a4801fd5184b9
SHA256

f9630f18bab4a8c5d1f59bcebb0a7378227dd688e225395f7c38ce0e7325aa85
SHA512

74dca12e5df93b94dcc1238fc14388169b11b5c33c6d7aed73aeefab381406b135f4d695b7de60a5deb531bcd302a0c0d1ce2da3da5b9a6b19e3dc60a8f45a23
SSDEEP

6144:Ww6LenExVvVpqulofDaOguBWKblHbQTStilnrm:Ww6LeErJl27guBWKbl7WS6nrm

Score

N/A

Malware Config

Signatures

Files

f9630f18bab4a8c5d1f59bcebb0a7378227dd688e225395f7c38ce0e7325aa85
.exe windows x86

bf3ccb3a2f1750d5dba73339f6af6e4a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ieakfltr

_Dtest
_LCosh
_FSnan
_FXbig
_Poly
_LDtest
_Xbig
_LInf
_FNan
_Sinh
_Inf
_FDtest

user32

GetDoubleClickTime
VkKeyScanW
SetScrollInfo
CloseDesktop
CharUpperBuffW
CreateMenu
SetCapture
OpenClipboard
SetWindowPlacement
DeferWindowPos
PostMessageW
SetForegroundWindow
EmptyClipboard
ClientToScreen
DestroyMenu
GetWindowPlacement
DestroyCaret
GetMenuItemCount
GetWindow
GetDesktopWindow
RegisterClassW
ValidateRect
MapVirtualKeyW
GetParent
ShowCaret
PeekMessageW
InvalidateRgn
OffsetRect
GetKeyboardLayoutList
CreateWindowExW
InvalidateRect
IsWindowVisible
IsWindowUnicode

gdi32

BitBlt
CreateDIBSection
GetTextAlign
SetTextColor
CreateRectRgn
GetDeviceCaps
EndPage
ExtTextOutW
CreatePatternBrush
TextOutW

kernel32

InterlockedDecrement
GlobalFree
TerminateThread
SetFileAttributesA
DeleteFileA
GetModuleFileNameA
OpenMutexA
GetFileAttributesA
GetThreadPriority
ResumeThread
SetErrorMode
WaitForSingleObject
GetCurrentThread
GetExitCodeProcess
LoadLibraryA
GetDiskFreeSpaceA
GetExitCodeThread
HeapFree
CreateFileMappingA
GetTempFileNameA
TerminateProcess
GetCommandLineA
FileTimeToLocalFileTime
ResetEvent
OpenFileMappingA
GlobalDeleteAtom
GetProcessHeap
CloseHandle
VirtualFree
GetLocaleInfoA
GetFileSize
GetPriorityClass
VirtualQuery
ExitThread
LoadLibraryExA
Sleep
SleepEx
GetModuleHandleA
LocalAlloc
GetStringTypeExA
GetStdHandle
LockResource

ntdll

RtlCompareMemory
NtProtectVirtualMemory
ZwIsProcessInJob
NtSetInformationProcess
NtCreateTimer
NtResumeThread

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf3ccb3a2f1750d5dba73339f6af6e4a

Headers

DLL Characteristics

File Characteristics

Imports

ieakfltr

user32

gdi32

kernel32

ntdll

Sections

.text Size: 158KB - Virtual size: 158KB

.data Size: 52KB - Virtual size: 52KB

.rsrc Size: 22KB - Virtual size: 24KB

.text
Size: 158KB - Virtual size: 158KB

.data
Size: 52KB - Virtual size: 52KB

.rsrc
Size: 22KB - Virtual size: 24KB