9f72ac96959fd2bc73170dded90ec86ed4a11a22a1ed6f24eab39d7c40b4fde8

Sharing

Copy URL Twitter E-mail

General

Target

9f72ac96959fd2bc73170dded90ec86ed4a11a22a1ed6f24eab39d7c40b4fde8
Size

418KB
MD5

f1fc14c5120a7ad09a464a478a12a8b1
SHA1

878b6d056e1929479b8cd193823f1576ea5705a9
SHA256

9f72ac96959fd2bc73170dded90ec86ed4a11a22a1ed6f24eab39d7c40b4fde8
SHA512

e6e5807efd68d51aa3e32f6d77e3f5dfbdb049c4b6daae7aad137adb5926443c654a304369714d3b5f1282a092661c08983e7212c6e4a05a9daef37e15d23062
SSDEEP

6144:jlEoPzD34ni2Zcut3yDl2dIxMgHvpCBH4ksF7a3oeU5sXp/L8xzB8iZ34ciXYkAm:9PPSvPYa/So0F7qoeisZ/Lgl4qY

Score

N/A

Malware Config

Signatures

Files

9f72ac96959fd2bc73170dded90ec86ed4a11a22a1ed6f24eab39d7c40b4fde8
.exe windows x86

74ca1b12c24493c68f0d5a74f20482de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteEx
SHAppBarMessage
DragQueryFileAorW

kernel32

QueryPerformanceCounter
GetEnvironmentStringsW
ExitProcess
HeapDestroy
HeapCreate
GetStdHandle
GetOEMCP
HeapReAlloc
WriteFile
TlsSetValue
InitializeCriticalSection
TlsGetValue
CopyFileA
GetFileAttributesExW
TlsFree
WriteConsoleInputW
GetVolumeInformationA
HeapFree
GetModuleFileNameW
TerminateProcess
SetLastError
LoadLibraryA
FreeEnvironmentStringsA
GetStringTypeW
VirtualFree
GetVersion
WideCharToMultiByte
GetModuleHandleA
TlsAlloc
GetSystemTimeAsFileTime
EnterCriticalSection
GetLastError
VirtualAlloc
GetStringTypeA
MultiByteToWideChar
IsBadWritePtr
GetTickCount
GlobalGetAtomNameW
VirtualQuery
GetCurrentThreadId
GetConsoleScreenBufferInfo
GetModuleFileNameA
LeaveCriticalSection
RtlUnwind
InterlockedExchange
GetStartupInfoA
GetTimeZoneInformation
GetCurrentProcess
GetCPInfo
GetCommandLineA
FillConsoleOutputCharacterA
SetFileAttributesA
SetHandleCount
GetFileType
GetCurrentProcessId
EnumTimeFormatsW
DeleteCriticalSection
GetCurrentThread
FreeEnvironmentStringsW
GetProcAddress
ReadConsoleOutputW
GetACP
SetConsoleMode
LCMapStringA
LCMapStringW
SetEnvironmentVariableA
GetEnvironmentStrings
UnhandledExceptionFilter
HeapAlloc

user32

ClientToScreen
TranslateMDISysAccel
DdeDisconnect
PostMessageA
EndPaint
CloseClipboard
DdeQueryStringW
DestroyCaret
IsRectEmpty
LoadKeyboardLayoutA
SetTimer
DdePostAdvise
GetDoubleClickTime
EnumWindows
SetFocus
GetWindowTextA
IsMenu
DdeFreeDataHandle
MessageBoxA
PeekMessageA
EnableScrollBar
GetDC
DdeInitializeW
IsDialogMessage
IsWindow

wininet

FtpOpenFileW
HttpQueryInfoA

Sections

.text
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 282KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74ca1b12c24493c68f0d5a74f20482de

Headers

File Characteristics

Imports

shell32

kernel32

user32

wininet

Sections

.text Size: 124KB - Virtual size: 124KB

.rdata Size: 4KB - Virtual size: 32KB

.data Size: 282KB - Virtual size: 281KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 124KB - Virtual size: 124KB

.rdata
Size: 4KB - Virtual size: 32KB

.data
Size: 282KB - Virtual size: 281KB

.rsrc
Size: 7KB - Virtual size: 6KB