5074e2e8d0bf6292bdfd696fb894eb43f36f566c35cf405f719e04ef3bf8833a

Sharing

Copy URL Twitter E-mail

General

Target

5074e2e8d0bf6292bdfd696fb894eb43f36f566c35cf405f719e04ef3bf8833a
Size

72KB
MD5

27958fe5e93f500da380d50a23e52a4f
SHA1

46be3289b76436bffa622c3710f58486eb51f548
SHA256

5074e2e8d0bf6292bdfd696fb894eb43f36f566c35cf405f719e04ef3bf8833a
SHA512

fbd0ac99e79679e056d019a3eb8e7f508c37f4556aa13dbef2d722329573160889c3d2f8c73d4fc5e4e6e43853543d26a775fce567baabbc8d42d9e5c22ec434
SSDEEP

1536:lITiArt/7ugk1lv+4UT2F5aw8aSIhdKPMdrgyb2xOnqXAaeataipr2n:eTrrt/jk1s4haoLtc0qFX2n

Score

N/A

Malware Config

Signatures

Files

5074e2e8d0bf6292bdfd696fb894eb43f36f566c35cf405f719e04ef3bf8833a
.exe windows x86

1b6182018bc2970592ba64a86e00babe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetDlgItemInt
ReleaseDC
CreateWindowStationW
UnregisterHotKey
GetMenu
CallMsgFilterW
MessageBoxIndirectA
DialogBoxIndirectParamA
ReplyMessage
DrawTextA
DlgDirSelectExA
SetPropW
CharLowerW

urlmon

IsLoggingEnabledW
GetClassFileOrMime
RegisterMediaTypeClass

ole32

OleUninitialize
OleSetContainedObject
GetConvertStg
StringFromIID
GetRunningObjectTable
OleCreateLink
OleCreateFromFileEx

wininet

InternetOpenUrlW
InternetCreateUrlA
FtpOpenFileA
InternetUnlockRequestFile
InternetSetOptionExA

gdi32

CreateDIBPatternBrush
Chord
CreateCompatibleBitmap
AbortDoc
CreateCompatibleDC

opengl32

glTexCoord4s
glPushName
glTexParameteriv
glClearAccum
glTexCoord4dv
glLightiv
glFogiv
glVertex2d

kernel32

CloseHandle
WriteConsoleW
SetStdHandle
GetStringTypeW
LCMapStringW
HeapSize
FlushFileBuffers
ReadFile
MultiByteToWideChar
GetConsoleMode
GetConsoleCP
SetFilePointer
CreateFileW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LoadLibraryW
Sleep
GetSystemTimeAsFileTime
GetCurrentProcessId
RtlUnwind
EncodePointer
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
SetDefaultCommConfigA
GetCPInfoExW
GetDriveTypeA
VerLanguageNameW
HeapFree
GetLastError
HeapReAlloc
HeapAlloc
GetCommandLineA
HeapSetInformation
GetStartupInfoW
IsProcessorFeaturePresent
EnterCriticalSection
LeaveCriticalSection
HeapCreate
DecodePointer
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
TlsAlloc
TlsGetValue

Sections

.text
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b6182018bc2970592ba64a86e00babe

Headers

DLL Characteristics

File Characteristics

Imports

user32

urlmon

ole32

wininet

gdi32

opengl32

kernel32

Sections

.text Size: 38KB - Virtual size: 37KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 4KB - Virtual size: 1.2MB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 38KB - Virtual size: 37KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 4KB - Virtual size: 1.2MB

.rsrc
Size: 14KB - Virtual size: 14KB