b4a6cc5b670fcf8fa9b41a2ecbb5c681b624058f1daf18cd96283c7d0aecd359

Sharing

Copy URL Twitter E-mail

General

Target

b4a6cc5b670fcf8fa9b41a2ecbb5c681b624058f1daf18cd96283c7d0aecd359
Size

224KB
MD5

1a91a4a577a75214101498d5f56fe0a9
SHA1

fdc5c524c63718ee5c1f9d5bb1ca9216e2714602
SHA256

b4a6cc5b670fcf8fa9b41a2ecbb5c681b624058f1daf18cd96283c7d0aecd359
SHA512

53b64cb5a8d24cd046e9ef71975bb8067bcf6eee88ab609b7f770c112008496ea493df672ae22d5f91824bd22ae06940367a1b73f5fa09ffedd6cdc1ebf52034
SSDEEP

3072:yUN13j2Rf+tIzlPQ+//GOTabiJ+UsrYrkuFjW6zctt/E5Ct0KcD9w5RRatFKc7/k:9NZc//nyosEdzcH/EQi/wBatFKEt

Score

N/A

Malware Config

Signatures

Files

b4a6cc5b670fcf8fa9b41a2ecbb5c681b624058f1daf18cd96283c7d0aecd359
.exe windows x86

4523b7f2739848c2c1233f6035b457b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
LocalAlloc
GetSystemTimeAsFileTime
GetCommandLineA
FindClose
RemoveDirectoryA
GetVersion
FindNextFileA
TlsSetValue
TlsAlloc
GetCurrentThread
WriteConsoleW
VirtualProtect
MoveFileA
CopyFileA
GetTickCount
GetCurrentThreadId
DeleteFileA
CloseHandle
CreateProcessA
FindFirstFileA
Sleep

comdlg32

ChooseColorA
GetFileTitleA
ChooseFontA
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

OleUninitialize
CoRevokeClassObject
OleInitialize

comctl32

ImageList_Read
ImageList_Write
ImageList_SetIconSize
ImageList_SetDragCursorImage
ImageList_SetBkColor
ImageList_Remove
ImageList_Destroy
InitCommonControlsEx

wininet

HttpSendRequestExA
InternetAttemptConnect
HttpEndRequestA
InternetWriteFile
InternetSetOptionA
InternetReadFile
InternetQueryOptionA
InternetQueryDataAvailable
InternetOpenA
InternetCrackUrlA
InternetConnectA
InternetCloseHandle
HttpSendRequestA
HttpQueryInfoA
HttpOpenRequestA
HttpAddRequestHeadersA

msvcrt

__setusermatherr
_initterm
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_adjust_fdiv
_memicmp
__getmainargs
__p___initenv
exit
_XcptFilter
_exit
_findfirst
_findclose
gmtime
fopen
fseek
fputs
fwrite
fclose
atoi

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 699KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4523b7f2739848c2c1233f6035b457b7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comdlg32

ole32

comctl32

wininet

msvcrt

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 88KB - Virtual size: 85KB

.data Size: 84KB - Virtual size: 699KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 88KB - Virtual size: 85KB

.data
Size: 84KB - Virtual size: 699KB

.rsrc
Size: 4KB - Virtual size: 2KB