b9d7fa22f433e62cd1c09dc3d4f09c20aec32dc5ed2138203e08c11daf1afecb

Sharing

Copy URL Twitter E-mail

General

Target

b9d7fa22f433e62cd1c09dc3d4f09c20aec32dc5ed2138203e08c11daf1afecb
Size

806KB
MD5

0d4f9aa0f291654e43667e14c1af1868
SHA1

087f94061f760b2ca7e5af25380d8d1530acda33
SHA256

b9d7fa22f433e62cd1c09dc3d4f09c20aec32dc5ed2138203e08c11daf1afecb
SHA512

52613d3bb7dff10502b03de4b7536a8fef06b1b4010a095b62cfd660f8bbf66bac0de1ccba44ff8b58c9095e9bafbccf1924ff1fd851de397e00528b975e354e
SSDEEP

12288:BI/SBvy7xUGUWKhXnsQXCSOwnJBmwNgk0yWgCAjL7Agxq:BVK77UWKnXuADmDkkEXAv

Score

N/A

Malware Config

Signatures

Files

b9d7fa22f433e62cd1c09dc3d4f09c20aec32dc5ed2138203e08c11daf1afecb
.exe windows x86

80ba29684554c5bab4cd3f14149c15ef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
EnterCriticalSection
InterlockedDecrement
GetSystemTimeAsFileTime
InterlockedIncrement
HeapAlloc
DeleteCriticalSection
SetLastError
LeaveCriticalSection
HeapAlloc
EnterCriticalSection
CreateThread
LoadLibraryW
VirtualAlloc
GetModuleFileNameA
InterlockedIncrement
MultiByteToWideChar
GetModuleHandleA
InterlockedDecrement
GetModuleFileNameW
LeaveCriticalSection
InterlockedCompareExchange
CreateEventW
LeaveCriticalSection
GetLastError
GetModuleFileNameA
DeleteCriticalSection
LeaveCriticalSection
GetProcAddress
Sleep
InterlockedDecrement
LocalFree
GetCurrentProcessId
InterlockedCompareExchange
GetCurrentProcess
lstrlenA
FreeLibrary
GetCurrentProcess
lstrlenA
GetModuleHandleA
DisableThreadLibraryCalls
QueryPerformanceCounter
InterlockedDecrement
GetProcAddress
InterlockedIncrement
CreateThread
VirtualAlloc
lstrcmpiW
GetModuleFileNameW
CreateEventW
MultiByteToWideChar
HeapDestroy
VirtualProtect
InitializeCriticalSection
InterlockedDecrement
VirtualAlloc
GetProcessHeap
CreateThread
CloseHandle
InterlockedExchange
GetSystemTimeAsFileTime
HeapFree
VirtualProtect
lstrcmpiW
InterlockedDecrement
InterlockedExchange
GetModuleFileNameA
GetCurrentThreadId
GetModuleFileNameA
DeleteCriticalSection
UnhandledExceptionFilter
LoadLibraryA
EnterCriticalSection
ReadFile
GetProcessHeap
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameA
GetTickCount
LocalAlloc
FreeLibrary
lstrcmpiW
DisableThreadLibraryCalls
FreeLibrary
GetModuleFileNameW
SetLastError
VirtualAlloc
VirtualProtect
EnterCriticalSection

user32

GetDC
PostQuitMessage
PostQuitMessage
LoadIconW
KillTimer
GetFocus
SetFocus
DefWindowProcW
IsWindow
InvalidateRect
GetWindowRect
GetDesktopWindow
PostMessageW
PostQuitMessage
GetWindowLongW
CharNextW
wsprintfA
IsWindow
CharNextW
BeginPaint
DialogBoxParamW
DefWindowProcW
SetForegroundWindow
DialogBoxParamW
GetParent
IsDlgButtonChecked
GetDlgItem
SetWindowPos
LoadStringW
SetCursor
DestroyWindow
wsprintfA
GetDlgItem
SetWindowPos
KillTimer
GetDlgItem
GetSystemMetrics
EnableWindow
BeginPaint
SetWindowPos
DispatchMessageW
BeginPaint
BeginPaint
CreateWindowExW
IsWindow
SendDlgItemMessageW
PostQuitMessage
LoadStringW
EndDialog
SetCursor
wsprintfA
SetFocus
DispatchMessageW
DefWindowProcW
EndDialog
GetSystemMetrics
SetCursor
PostMessageW
LoadIconW
SetWindowLongW
CharNextW
EndPaint
KillTimer
SetWindowTextW
SetWindowPos
BeginPaint
EnableWindow
GetSystemMetrics
GetParent
GetFocus
SetWindowTextW
GetWindowRect
GetFocus
DialogBoxParamW
PostQuitMessage
DestroyWindow
LoadStringW
CreateWindowExW
DefWindowProcW
SetTimer
TranslateMessage
DispatchMessageW
ReleaseDC
DialogBoxParamW
DestroyWindow
SetDlgItemTextW
LoadStringW
PeekMessageW
BeginPaint

Sections

.text
Size: 718KB - Virtual size: 968KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80ba29684554c5bab4cd3f14149c15ef

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 718KB - Virtual size: 968KB

.data Size: - Virtual size: 4KB

.adata Size: - Virtual size: 4KB

.idata Size: - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.pdata Size: - Virtual size: 4KB

.pdata Size: - Virtual size: 4KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 718KB - Virtual size: 968KB

.data
Size: - Virtual size: 4KB

.adata
Size: - Virtual size: 4KB

.idata
Size: - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.pdata
Size: - Virtual size: 4KB

.pdata
Size: - Virtual size: 4KB

.rsrc
Size: 82KB - Virtual size: 84KB