d4951fc163296a9df87690adb672dd154fb8523876fa17f26fd90144cd9feb30

Sharing

Copy URL Twitter E-mail

General

Target

d4951fc163296a9df87690adb672dd154fb8523876fa17f26fd90144cd9feb30
Size

180KB
MD5

161eac2eb37db83724fc554f7e762a30
SHA1

29d4e9f4d51c4327eb7e02ef3d034e1837ad5f03
SHA256

d4951fc163296a9df87690adb672dd154fb8523876fa17f26fd90144cd9feb30
SHA512

9e3af93fcfe39ddcd1fb02d53bf207e317d506bca9697083dcc6e7c830aed712eceae4b8f6185a83d860a8142884ef8b9151970e101ef2eb7fb3986f1ae6d108
SSDEEP

3072:9lGeyrJP5KbCOjLLmZw2k0TvvKthTdbooKDatRRqW5hnuxs0nOC2gJFCbxQWaZ:6P5KbhjLShTvvCh2oyqRUWmeP0CVUZ

Score

N/A

Malware Config

Signatures

Files

d4951fc163296a9df87690adb672dd154fb8523876fa17f26fd90144cd9feb30
.exe windows x86

2a991e102c7617c2e2feaa1683f44f7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
WaitForSingleObjectEx
GetProcessHeap
LocalFree
InterlockedCompareExchange
TlsFree
WaitForSingleObject
RegisterWaitForSingleObject
TerminateProcess
WriteFile
GetACP
InterlockedDecrement
RaiseException
GetEnvironmentStringsW
GetCurrentProcessId
WideCharToMultiByte
SetLastError
TlsSetValue
lstrlenW
InitializeCriticalSectionAndSpinCount
SetFilePointer
SetUnhandledExceptionFilter
LeaveCriticalSection
MultiByteToWideChar
GetFileSizeEx
GetModuleFileNameW
CreateThread
GetSystemTimeAsFileTime
GetCurrentProcess
GetCurrentThreadId
GetFileType
GetStdHandle
InterlockedIncrement
FlushFileBuffers
CreateFileA
GetVersionExW
HeapReAlloc
LoadLibraryA
Sleep
SetFilePointerEx
HeapAlloc
CloseHandle
InterlockedExchange
QueryPerformanceCounter
EnterCriticalSection
HeapFree
GetModuleFileNameA
GetTickCount
GetCPInfo
TryEnterCriticalSection
GetLastError
GetFileAttributesW
TlsAlloc
FindClose
LoadLibraryW
HeapCreate
DeleteCriticalSection
GetStartupInfoA
GetModuleHandleW
FreeLibrary
HeapSize
UnhandledExceptionFilter
GetFileSize
CreateFileW
LoadResource
FreeLibraryAndExitThread
IsDebuggerPresent
SetEvent
TlsGetValue
GetVersionExA
SetEndOfFile
ExitProcess
InitializeCriticalSection
SetErrorMode
GetModuleHandleA
GetCommandLineA
VirtualAllocEx

user32

GetWindowTextLengthW
MessageBoxW
BeginPaint
EndPaint
SetTimer
GetCursorPos
GetWindowTextLengthA
LoadStringA
InvalidateRect
GetMenuItemCount
SetCursor
SetRectEmpty
GetDesktopWindow
GetWindowRect
IsWindowVisible
IsWindowEnabled
ShowWindow
GetSysColorBrush
GetWindowLongW
GetDCEx
ShowWindowAsync
GetWindowThreadProcessId
GetWindowLongA
DestroyWindow
GetSystemMetrics
GetClientRect
GetWindowPlacement
PostQuitMessage
GetWindowDC
ReleaseDC
GetDlgItemInt
SetWindowPos
SetForegroundWindow
LoadStringW
MessageBoxA
GetDlgItem
GetWindowTextA
EnableWindow
TranslateMessage
GetDlgItemTextA
EndDialog
GetDlgItemTextW
IsWindowUnicode
SendMessageA
GetParent
GetWindowTextW

gdi32

CreatePalette
CreatePenIndirect
SelectPalette
SetViewportOrgEx
CreateFontIndirectA
StretchBlt
ExtSelectClipRgn
RestoreDC
GetClipBox
SaveDC
PatBlt
CreateBitmap
CreateCompatibleBitmap
ExtTextOutW
CreateSolidBrush
BitBlt
CreateRectRgnIndirect
SetBkMode
SetBkColor
CreateCompatibleDC
GetStockObject
DeleteDC
SetTextColor
SetStretchBltMode
GetDeviceCaps
SelectObject
DeleteObject
GetStretchBltMode
RealizePalette
SelectClipRgn
GetTextExtentPoint32W
SetMapMode
Rectangle
RectVisible
GetObjectW
LineTo
MoveToEx
CreateDIBitmap
CreateDIBSection
ExtTextOutA
GetObjectA
SetWindowOrgEx
ExtCreatePen
CreateFontIndirectW

ole32

OleFlushClipboard
OleIsCurrentClipboard
CoDisconnectObject
CoQueryProxyBlanket
CoGetClassObject
CoSetProxyBlanket
StgCreateDocfileOnILockBytes
CoRegisterClassObject
CreateStreamOnHGlobal
StgOpenStorageOnILockBytes
CoFreeUnusedLibraries
CoCreateGuid
CoTaskMemRealloc
CoRevokeClassObject
CLSIDFromProgID
StringFromCLSID
StringFromGUID2
CLSIDFromString
CoTaskMemAlloc
CoInitialize
CoTaskMemFree
CoInitializeSecurity
CoUninitialize
CoCreateInstance
CoInitializeEx
CreateILockBytesOnHGlobal
ReleaseStgMedium
GetRunningObjectTable
CoRegisterMessageFilter
OleRun
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleLockRunning
OleSaveToStream
StgCreateDocfile
CreateItemMoniker
OleDuplicateData
OleInitialize
OleRegGetUserType
OleUninitialize
CreateBindCtx

msvcrt

memcmp
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit
_onexit

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a991e102c7617c2e2feaa1683f44f7e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

msvcrt

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 132KB - Virtual size: 240KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 132KB - Virtual size: 240KB

.rsrc
Size: 20KB - Virtual size: 17KB