feb491e56a2656c40787e507e5687ece166c795fd667b815d23cb8d314c13c8e

Sharing

Copy URL Twitter E-mail

General

Target

feb491e56a2656c40787e507e5687ece166c795fd667b815d23cb8d314c13c8e
Size

709KB
MD5

3b3e7d6673ad4bf200806636d8e67c50
SHA1

428c9a394f701b56a0341c584bcce4aa476d7fac
SHA256

feb491e56a2656c40787e507e5687ece166c795fd667b815d23cb8d314c13c8e
SHA512

495c43d9f9823ac13cfb8979742251ee121b2895790a27f2f08b9d42c429e1552d3ac2e1e178862adb436ab58ea509662842ac8c8577ba02530d01607859d4b9
SSDEEP

12288:gZXuZfNTW3mz2x6bgyLwr477tsiZTTFIGWyJINwBjikWUkcX:GyfNTW2JgyLwOt1DWUiwB+Z4

Score

N/A

Malware Config

Signatures

Files

feb491e56a2656c40787e507e5687ece166c795fd667b815d23cb8d314c13c8e
.exe windows x86

6d58544c4233aee60af2a3cfd9c40a56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CheckMenuItem
CopyImage
GetForegroundWindow
GetWindowTextLengthW
EndDialog
ScreenToClient
DrawFocusRect
GetWindowPlacement
LoadImageW
DefWindowProcW
CallNextHookEx
GetCapture
GetSysColor
FillRect
GetMessagePos
MessageBoxA
GetWindowLongW
MapWindowPoints
SetScrollInfo
ShowWindow
GetActiveWindow
ReleaseDC
OpenClipboard
RedrawWindow
CloseClipboard
SetCursor
DestroyAcceleratorTable
EqualRect
wsprintfW
DestroyCaret
IsWindow
TrackPopupMenu
ShowScrollBar
EnumWindows
DestroyMenu
SetCapture
GetTopWindow
SendMessageA
RegisterClassW
CreateMenu
ReleaseCapture
RegisterClipboardFormatW
SetWindowPos
IsDlgButtonChecked
DestroyWindow
SetForegroundWindow
SendDlgItemMessageA
IsWindowEnabled
GetWindowRgn
GetMenu
CreatePopupMenu
GetParent
KillTimer
GetMenuItemCount
DrawFrameControl
ClientToScreen
GetFocus
IsClipboardFormatAvailable
SetClipboardData
BeginDeferWindowPos
InflateRect
SetMenu
SetTimer
MessageBoxW
EndDeferWindowPos
GetCursorPos
CopyRect
SetActiveWindow
GetWindowDC
GetDesktopWindow
MessageBeep
GetMessageW
RegisterClassExW
CreateWindowExW
IsWindowVisible
GetKeyState
GetClientRect
CharUpperW

shell32

DragFinish
SHGetPathFromIDListA
ExtractIconA
Shell_NotifyIconA
ord155

rpcrt4

UuidToStringA
UuidCreate
UuidCreateSequential

kernel32

DuplicateHandle
GlobalFree
GetCurrentProcess
GlobalSize
GetOEMCP
InitializeCriticalSection
GetTimeZoneInformation
SetFilePointer
DeleteCriticalSection
HeapAlloc
SetUnhandledExceptionFilter
GetDateFormatA
CompareStringW
GetModuleFileNameA
GetStartupInfoA
FatalAppExitA
GetLocalTime
TlsSetValue
VirtualAlloc
MultiByteToWideChar
lstrcmpiA
GetThreadLocale
GetTimeFormatA
GetCommandLineW
TlsFree
UnhandledExceptionFilter
RtlUnwind
GetCPInfo
HeapReAlloc
GetUserDefaultLCID
Sleep
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetSystemInfo
InterlockedExchange
GetLocaleInfoA
HeapFree
GlobalLock
FileTimeToLocalFileTime
GetStartupInfoW
GetLocaleInfoW
HeapCreate
WriteConsoleA
LocalFree
SetLastError
GetLastError
LoadLibraryA
GetStringTypeA
CreateDirectoryA
CreateMutexW
FlushFileBuffers
GetCurrentThreadId
GetVersion
GetVersionExA
GetTickCount
IsValidCodePage
WaitForSingleObject
EnterCriticalSection
GetCurrentProcessId
SystemTimeToFileTime
ExitThread
GetEnvironmentStrings
GetTempFileNameA
FreeEnvironmentStringsA
GetDriveTypeA
TlsAlloc
GetSystemTimeAsFileTime
FormatMessageA
GetCommandLineA
HeapSize
IsBadWritePtr
LCMapStringW
WriteFile
QueryPerformanceCounter
FlushInstructionCache
WideCharToMultiByte
ReadFile
VirtualFree
CloseHandle
TlsGetValue
GetModuleFileNameW
HeapDestroy
TerminateProcess
IsValidLocale
SetFileTime
SetErrorMode
GetCurrentThread
GetFileType
GetProcAddress
LeaveCriticalSection
CompareStringA
SuspendThread
SetStdHandle
GetACP
ExitProcess
GetStdHandle
CreateFileW
GetModuleHandleA
VirtualProtect
GetModuleHandleW
GetEnvironmentStringsW
GlobalUnlock
GetProcessHeap
FreeResource
FindFirstFileW
LCMapStringA
SetHandleCount
VirtualQuery
GetStringTypeW

wininet

InternetSetFilePointer
InternetCloseHandle
InternetWriteFile
HttpSendRequestW
HttpQueryInfoW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetReadFile
InternetOpenW
DetectAutoProxyUrl
InternetCrackUrlW
InternetSetStatusCallbackW
InternetConnectW
InternetCanonicalizeUrlW

gdi32

SetPixel
SetBkColor
GetTextMetricsW
GetDIBits
SetBkMode
CreateSolidBrush
GetDeviceCaps
CreateCompatibleBitmap
DeleteDC
CreateDCW
DeleteObject
CreatePatternBrush
GetObjectW
OffsetRgn
ExcludeClipRect
GetStockObject

comctl32

ImageList_Draw
ord17
InitCommonControlsEx

advapi32

RegSetValueExA
RegCloseKey

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 457KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d58544c4233aee60af2a3cfd9c40a56

Headers

File Characteristics

Imports

user32

shell32

rpcrt4

kernel32

wininet

gdi32

comctl32

advapi32

Sections

.text Size: 82KB - Virtual size: 82KB

.rdata Size: 457KB - Virtual size: 457KB

.data Size: 101KB - Virtual size: 105KB

.rsrc Size: 67KB - Virtual size: 66KB

.text
Size: 82KB - Virtual size: 82KB

.rdata
Size: 457KB - Virtual size: 457KB

.data
Size: 101KB - Virtual size: 105KB

.rsrc
Size: 67KB - Virtual size: 66KB