5504ed892e136abeadcb6eb132a542b4d3e5e84b59c7acb5fadd22fc5d137f6b

Sharing

Copy URL

Twitter E-mail

General

Target

5504ed892e136abeadcb6eb132a542b4d3e5e84b59c7acb5fadd22fc5d137f6b
Size

308KB
MD5

6c7e279b9298ea6c12e63c760b0a7a9b
SHA1

79976898c1b1298a58c787031bf23c626f09c122
SHA256

5504ed892e136abeadcb6eb132a542b4d3e5e84b59c7acb5fadd22fc5d137f6b
SHA512

18cb5c09151ace23bdad0c96569409501357083d1f2c63d2bfad1cb8930313c6b4b67298afcabb754506b36fd6c2c187e2abf6d3c5ae1d3499818967d89173d1
SSDEEP

6144:JRqmBKByO3a84W12T8WCW/rTd5APfd3WJpJBhniN0s0sFPYZgjVZC:JROOMQvCW/I9GROTv

Score

N/A

Malware Config

Signatures

Files

5504ed892e136abeadcb6eb132a542b4d3e5e84b59c7acb5fadd22fc5d137f6b
.exe windows x86

a9bd72f201aaf0c63eaac9c0f878d52d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetDlgItem
MsgWaitForMultipleObjects
LoadStringW
SendMessageW
EnableWindow
PeekMessageW
DispatchMessageW
IsWindow
GetSystemMetrics
LoadCursorW
SetCursor
LoadImageW
LoadBitmapW
RegisterClipboardFormatW
GetParent
wsprintfW
LoadIconW
PostMessageW
SetDlgItemTextW
SetFocus
InvalidateRect
UpdateWindow
WinHelpW
SetWindowLongW

advapi32

SetFileSecurityW
InitializeSecurityDescriptor
InitializeAcl
GetAce
LookupAccountSidW
RegSetValueExA
RegSetValueExW
RegOpenKeyExA
RegQueryValueExW
RegQueryValueExA
RegCloseKey
AddAccessAllowedAce

utildll

StrConnectState
StrAsyncConnectState

rasapi32

RasDeleteEntryW
RasSetAutodialAddressW
RasRenameEntryW
RasEnumConnectionsW
RasHangUpW
RasGetConnectStatusW
RasValidateEntryNameW

kernel32

GetProcessAffinityMask
OpenProcess
MultiByteToWideChar
GetThreadTimes
GetModuleHandleA
GetPriorityClass
lstrcmpW
SetEvent
CreateEventW
Sleep
FreeLibrary
SetProcessAffinityMask
LoadLibraryA
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCurrentDirectoryW
SetUnhandledExceptionFilter
GetTickCount
HeapSize
GetProcAddress
GetNumberFormatW
HeapReAlloc
lstrlenW
GetCurrentProcess
GetCommandLineW
GetStartupInfoW
GetModuleHandleW
ExitProcess
CreateMutexW
GetCurrentProcessId
ReleaseMutex
SetProcessShutdownParameters
WaitForSingleObject
ExpandEnvironmentStringsW
CreateProcessW
GetCurrentThreadId
FormatMessageW
GetVersionExW
GetLocaleInfoW
LocalAlloc
LocalFree
HeapFree
HeapAlloc
GetProcessHeap
CreateThread
CloseHandle
lstrcpynW
lstrcpyW
GetLastError
LoadLibraryW
InterlockedCompareExchange
GetVersionExA
IsBadWritePtr
SetLastError
GetCurrentThread
UnhandledExceptionFilter

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 179KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.secx
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.seca
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.secb
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.secc
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.secd
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sece
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.secf
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.secg
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datx
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.inte
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.osacx
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9bd72f201aaf0c63eaac9c0f878d52d

Headers

File Characteristics

Imports

user32

advapi32

utildll

rasapi32

kernel32

Sections

.text Size: 77KB - Virtual size: 76KB

.data Size: 179KB - Virtual size: 180KB

.secx Size: 5KB - Virtual size: 7KB

.seca Size: 1KB - Virtual size: 7KB

.secb Size: 2KB - Virtual size: 7KB

.idata Size: 3KB - Virtual size: 2KB

.secc Size: 2KB - Virtual size: 7KB

.secd Size: 2KB - Virtual size: 4KB

.sece Size: 2KB - Virtual size: 4KB

.secf Size: 2KB - Virtual size: 4KB

.secg Size: 2KB - Virtual size: 4KB

.datx Size: 1KB - Virtual size: 4KB

.inte Size: 3KB - Virtual size: 9KB

.osacx Size: 1KB - Virtual size: 4KB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 77KB - Virtual size: 76KB

.data
Size: 179KB - Virtual size: 180KB

.secx
Size: 5KB - Virtual size: 7KB

.seca
Size: 1KB - Virtual size: 7KB

.secb
Size: 2KB - Virtual size: 7KB

.idata
Size: 3KB - Virtual size: 2KB

.secc
Size: 2KB - Virtual size: 7KB

.secd
Size: 2KB - Virtual size: 4KB

.sece
Size: 2KB - Virtual size: 4KB

.secf
Size: 2KB - Virtual size: 4KB

.secg
Size: 2KB - Virtual size: 4KB

.datx
Size: 1KB - Virtual size: 4KB

.inte
Size: 3KB - Virtual size: 9KB

.osacx
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 3KB