70283ca10a129af5d4760bfc3a8103f76c8b6791529b5e20b1aadc84eee1985a

Sharing

Copy URL Twitter E-mail

General

Target

70283ca10a129af5d4760bfc3a8103f76c8b6791529b5e20b1aadc84eee1985a
Size

283KB
MD5

90d6c92bd2a84d9e8492226e4bd8d35c
SHA1

30616bba0d19bf561712b829a2acfac73efbcb29
SHA256

70283ca10a129af5d4760bfc3a8103f76c8b6791529b5e20b1aadc84eee1985a
SHA512

7e920d286bcf3956a8b5b0a2ae8a15128c7d7a84137be8eb930c1f8740611d88710efde8facb768bfb9709c2f554cb62f6174613a6f52b0f27f3c8d8d147f56b
SSDEEP

6144:l/WI3WBBVCPd7UZd7B5EQCrGPaX7YJF3e0g8vA7mpt0O:lT3WBDdZd7IQCrGP0YbOr8Y7mp

Score

N/A

Malware Config

Signatures

Files

70283ca10a129af5d4760bfc3a8103f76c8b6791529b5e20b1aadc84eee1985a
.exe windows x86

c903efcfbcad7cc522b2dce000067e33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePolygonRgn
ArcTo
GetStretchBltMode
FixBrushOrgEx
CopyEnhMetaFileA
GetCharWidthFloatW
GdiFlush
CreateColorSpaceA
GetDCOrgEx
RectVisible
GetCharWidth32W
GetDIBits
GetRasterizerCaps
GetRandomRgn
AbortDoc
SetColorSpace
CreateBitmapIndirect
EnumFontFamiliesExW
BeginPath
SetPolyFillMode
CreateICA
CreateMetaFileW
LPtoDP
DeleteDC

user32

RealChildWindowFromPoint
RegisterDeviceNotificationA
CharLowerW
SetKeyboardState
GetMenuContextHelpId
wsprintfA
EnumDisplayMonitors
MessageBoxA
GetWindowTextA
DdeImpersonateClient
GetClipboardFormatNameW
LoadImageW
DdeFreeDataHandle
DdeNameService
IsWindowUnicode
GetActiveWindow
CreateAcceleratorTableW
GetNextDlgTabItem
SwitchDesktop

wininet

InternetAttemptConnect
SetUrlCacheGroupAttributeA

kernel32

SetConsoleCtrlHandler
GetEnvironmentStringsW
VirtualFree
LCMapStringA
GetProcAddress
SetHandleCount
HeapCreate
MultiByteToWideChar
GetEnvironmentStrings
TlsFree
GetSystemTimeAsFileTime
GetProcAddress
WriteFile
VirtualProtect
LeaveCriticalSection
GetACP
FlushFileBuffers
GetCurrentProcess
GetExitCodeProcess
HeapLock
IsValidLocale
lstrcpyA
VirtualAlloc
HeapDestroy
TlsGetValue
GetTimeFormatA
SetTimeZoneInformation
GetUserDefaultLCID
IsValidCodePage
SetEvent
EnterCriticalSection
RtlFillMemory
ExitProcess
GetModuleHandleA
OutputDebugStringA
IsBadWritePtr
InitializeCriticalSection
CompareStringW
GetStdHandle
GetStartupInfoA
EnumSystemLocalesA
SetFilePointer
GetSystemInfo
LoadLibraryA
DeleteCriticalSection
FlushViewOfFile
GetLastError
HeapFree
GetFileType
GetDriveTypeW
GetLocaleInfoW
GetCommandLineA
SetStdHandle
CreateDirectoryExW
SetEnvironmentVariableA
SetThreadIdealProcessor
FreeEnvironmentStringsW
TerminateProcess
FindAtomA
GetLocaleInfoA
HeapAlloc
GetLogicalDriveStringsW
InterlockedDecrement
GetStringTypeW
GetPrivateProfileStructW
WideCharToMultiByte
TlsAlloc
GetTickCount
QueryPerformanceCounter
InterlockedIncrement
HeapReAlloc
UnhandledExceptionFilter
CloseHandle
GetTimeZoneInformation
GetCurrentThread
GetOEMCP
SetFileTime
VirtualQuery
DebugBreak
GetVersionExA
RtlUnwind
SetLastError
GetCurrentProcessId
TerminateThread
GetDateFormatA
CompareStringA
HeapValidate
GetCurrentThreadId
TlsSetValue
FreeEnvironmentStringsA
GetStringTypeA
InterlockedExchange
GetModuleFileNameA
GlobalGetAtomNameA
LCMapStringW
GetCPInfo
IsBadReadPtr

advapi32

CryptEncrypt
RegConnectRegistryA
RegDeleteKeyA
CryptDuplicateHash
DuplicateToken
RevertToSelf
InitiateSystemShutdownW
RegSetValueA
LookupAccountNameW
CreateServiceA
RegCreateKeyW
RegDeleteKeyW
RegDeleteValueA
CreateServiceW
CryptDestroyKey
CryptEnumProvidersA
StartServiceA
CryptVerifySignatureA
LookupPrivilegeNameA
CryptEnumProviderTypesW
CryptHashData
RegQueryInfoKeyA

Sections

.text
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c903efcfbcad7cc522b2dce000067e33

Headers

File Characteristics

Imports

gdi32

user32

wininet

kernel32

advapi32

Sections

.text Size: 142KB - Virtual size: 142KB

.rdata Size: 12KB - Virtual size: 19KB

.data Size: 114KB - Virtual size: 113KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 142KB - Virtual size: 142KB

.rdata
Size: 12KB - Virtual size: 19KB

.data
Size: 114KB - Virtual size: 113KB

.rsrc
Size: 13KB - Virtual size: 13KB