e0cf082c8241f5adfbbf1268ba7834fb597f2c516a3f19b4b684244021a9b93a

Sharing

Copy URL Twitter E-mail

General

Target

e0cf082c8241f5adfbbf1268ba7834fb597f2c516a3f19b4b684244021a9b93a
Size

240KB
MD5

015dc3831caf4467fea9d30dcc534720
SHA1

053dac911a28e0ec44d6aa1f68287b3c9b8675d6
SHA256

e0cf082c8241f5adfbbf1268ba7834fb597f2c516a3f19b4b684244021a9b93a
SHA512

d8d15c9e242e12d90979bac02d765b65acd3c83467ae1380465d9ce0d6ac3d639ecc2f8a0b812c3d4028f9a8fa8b6811c0363ea83fd384664d2fbb23180faf8a
SSDEEP

3072:yPZoKhNMNBdG9O16oqAeR1O5ZHJHY+YP1BPS0vfsjKb3AnSNWmnYF3bK/M1G6Yg:4ZoKhNUhcoIOeBavOAXHJbM

Score

N/A

Malware Config

Signatures

Files

e0cf082c8241f5adfbbf1268ba7834fb597f2c516a3f19b4b684244021a9b93a
.exe windows x86

0486497b0a7789d38d97a15db1927552

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetConnectA
InternetCloseHandle

gdi32

PolyBezierTo
ExtCreateRegion
GetDeviceCaps
GetCharWidthA
GetBkMode
PlayMetaFileRecord
LPtoDP
GetTextCharacterExtra
SetBoundsRect
EnumMetaFile
ExtFloodFill
CloseEnhMetaFile
OffsetWindowOrgEx
CloseFigure
GetFontData
DPtoLP
ExtSelectClipRgn
PolyDraw
SetPaletteEntries
IntersectClipRect
GetWindowOrgEx
SetPolyFillMode
GetWindowExtEx
CreateRoundRectRgn
PolyBezier
CreateCompatibleBitmap
CreateHatchBrush
Polygon
CreateEllipticRgn
FlattenPath
Rectangle
LineTo
SetRectRgn
CreateDIBPatternBrushPt
GetBkColor
GetNearestColor
SetViewportExtEx
GetViewportOrgEx
CreateBrushIndirect
ExcludeClipRect
CreateBitmapIndirect
SetTextCharacterExtra
UpdateColors
UnrealizeObject
PolylineTo
ScaleViewportExtEx
SetColorAdjustment
SelectPalette
PtInRegion
GetClipBox
SetWindowExtEx
SetPixelV
InvertRgn
CreateDCA
CombineRgn
GetBoundsRect
CreateEnhMetaFileA
GetOutlineTextMetricsA
SetTextColor
DeleteObject
SetArcDirection
StrokePath
SetTextJustification
CreatePenIndirect
SetBkMode
GetPaletteEntries
CreateICA
DeleteDC
SelectClipRgn
GetTextExtentPoint32A
GetCurrentObject
RectVisible
GetCharABCWidthsA
CreatePolygonRgn
StartDocA
RoundRect
CopyMetaFileA
GetDCOrgEx
SetPixel
GetPath
PathToRegion
CreatePen
GetGlyphOutlineA
ScaleWindowExtEx
SetROP2
GetViewportExtEx
GetRgnBox
Pie
GetTextExtentPointA
StrokeAndFillPath
PlayEnhMetaFile
ExtTextOutA
PlayMetaFile
CreateCompatibleDC
ArcTo
GetMapMode
SetMapperFlags
BitBlt
CreateBitmap
SetBitmapBits

user32

RegisterClassW
GetForegroundWindow
AdjustWindowRectEx
CreateWindowExW
ClientToScreen
DefFrameProcW
PostQuitMessage
DefWindowProcW
SetForegroundWindow
RedrawWindow
ShowWindow
RegisterWindowMessageW
LoadBitmapW
IsChild
RegisterClassExW
MonitorFromWindow
SendMessageW
DestroyWindow
IsWindowEnabled
MessageBoxW

comctl32

ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_AddMasked
DestroyPropertySheetPage
ImageList_Create
ImageList_EndDrag
ImageList_GetImageCount
ord17
ImageList_DragMove
ImageList_ReplaceIcon
ImageList_Destroy
InitCommonControlsEx
CreateStatusWindowW
ImageList_Add
ImageList_Draw
ImageList_DragEnter

kernel32

FreeEnvironmentStringsW
TerminateProcess
InterlockedExchange
GetSystemTime
IsBadReadPtr
GetCurrentProcessId
InterlockedDecrement
GetCurrentProcess
MultiByteToWideChar
VirtualFree
SetHandleCount
LCMapStringW
UnhandledExceptionFilter
TlsAlloc
GetCurrentThreadId
SetFilePointer
GetEnvironmentStrings
GetLastError
GetStringTypeA
SetLastError
GetEnvironmentStringsW
CloseHandle
GetModuleHandleA
LCMapStringA
GetTickCount
GetModuleHandleW
RtlUnwind
InitializeCriticalSection
InterlockedIncrement
DeleteCriticalSection
GetStartupInfoA
VirtualQuery
TlsSetValue
QueryPerformanceCounter
HeapFree
GetStringTypeW
SetUnhandledExceptionFilter
RaiseException
GetProcAddress
ExitProcess
CompareStringA
IsBadCodePtr
LoadLibraryA
GetModuleFileNameW
GetCommandLineW
CreateMutexW
FreeEnvironmentStringsA
GetFileType
VirtualAlloc
WriteFile
SetConsoleCtrlHandler
HeapCreate
TlsGetValue
FatalAppExitA
HeapAlloc
LeaveCriticalSection
GetCurrentThread
GetSystemTimeAsFileTime
GetCPInfo
GetTimeZoneInformation
EnterCriticalSection
GetLocalTime
GetStartupInfoW
SetEnvironmentVariableA
TlsFree
GetStdHandle
GetModuleFileNameA
HeapDestroy
GetVersion
HeapReAlloc
FlushFileBuffers
GetCommandLineA
CompareStringW
WideCharToMultiByte
IsBadWritePtr
ReadFile
SetStdHandle

advapi32

RegisterEventSourceA
GetTokenInformation
GetUserNameA
ReportEventA
EqualSid
RegCloseKey
RevertToSelf
RegOpenKeyExA
FreeSid

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0486497b0a7789d38d97a15db1927552

Headers

File Characteristics

Imports

wininet

gdi32

user32

comctl32

kernel32

advapi32

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 100KB - Virtual size: 96KB

.data Size: 52KB - Virtual size: 71KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 100KB - Virtual size: 96KB

.data
Size: 52KB - Virtual size: 71KB

.rsrc
Size: 32KB - Virtual size: 28KB