a248389e8d0a8b73ab7beb9cc332cf2f5491e7e4279ae79bfe6e019afe49fb22

Sharing

Copy URL Twitter E-mail

General

Target

a248389e8d0a8b73ab7beb9cc332cf2f5491e7e4279ae79bfe6e019afe49fb22
Size

805KB
MD5

e30e75493b058594d444fe0433248415
SHA1

5adaf42a767fc8361567a4c10816fa721a8e12be
SHA256

a248389e8d0a8b73ab7beb9cc332cf2f5491e7e4279ae79bfe6e019afe49fb22
SHA512

fb1241b09f7f5c932aa08c04186fbbb703624ee1ee05c8968c95b9267be4654881c095dfaccf54899f82e5700e871e43935888b0b08110e12d95c9e54c112f01
SSDEEP

12288:XJI5a242gAt9YCrdBUhV7uR6o8nnK2hgtlwNpqOZyzc5AfgxZ:XJ32lt3BUy8nnK2CfQZuc5AfU

Score

N/A

Malware Config

Signatures

Files

a248389e8d0a8b73ab7beb9cc332cf2f5491e7e4279ae79bfe6e019afe49fb22
.exe windows x86

d7c3c39bb700c12e22d591a0e1fa3a75

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetModuleHandleA
CreateThread
InterlockedExchange
EnterCriticalSection
GetCurrentProcess
VirtualAlloc
Sleep
InterlockedIncrement
LeaveCriticalSection
SetLastError
LoadLibraryW
CloseHandle
CreateThread
CreateThread
EnterCriticalSection
HeapFree
UnhandledExceptionFilter
InterlockedDecrement
InterlockedDecrement
GetCurrentProcess
VirtualProtect
HeapAlloc
LoadLibraryW
VirtualProtect
GetCurrentProcessId
GetModuleHandleA
VirtualProtect
HeapFree
SetLastError
HeapAlloc
GetCurrentThreadId
InterlockedIncrement
GetModuleFileNameW
UnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentProcessId
HeapDestroy
DisableThreadLibraryCalls
ReadFile
QueryPerformanceCounter
Sleep
EnterCriticalSection
GetLastError
HeapAlloc
GetCurrentThreadId
GetProcAddress
InterlockedExchange
Sleep
DisableThreadLibraryCalls
ReadFile
ReadFile
GetLastError
GetModuleHandleW
HeapDestroy
GetVersionExA
GetModuleHandleA
MultiByteToWideChar
GetVersionExA
GetProcessHeap
VirtualAlloc
GetTickCount
GetProcAddress
GetVersionExA
GetProcAddress
HeapDestroy
GetProcessHeap
CreateThread
MultiByteToWideChar
GetCurrentProcessId
InterlockedCompareExchange
FreeLibrary
GetModuleFileNameA
MultiByteToWideChar
LoadLibraryW
GetProcAddress
DisableThreadLibraryCalls
lstrlenA
QueryPerformanceCounter
GetModuleFileNameW
InitializeCriticalSection
GetCurrentThreadId
InterlockedExchange

user32

SetWindowPos
PostMessageW
InvalidateRect
GetDlgItem
GetSystemMetrics
GetSystemMetrics
EnableWindow
GetWindowRect
SetTimer
GetDC
GetClientRect
GetFocus
SendMessageW
PostMessageW
CreateWindowExW
ReleaseDC
SendDlgItemMessageW
EndDialog
SetWindowPos
ShowWindow
wsprintfA
DestroyWindow
GetDlgItem
GetClientRect
SetCursor
LoadIconW
GetWindowRect
DispatchMessageW
EnableWindow
GetDesktopWindow
EndDialog
BeginPaint
IsDlgButtonChecked
SetDlgItemTextW
ShowWindow
PeekMessageW
SendMessageW
InvalidateRect
SendMessageW
BeginPaint
CharNextW
SendDlgItemMessageW
ReleaseDC
SendDlgItemMessageW
SetForegroundWindow
wsprintfA
SetFocus
SetDlgItemTextW
InvalidateRect
KillTimer
GetSysColor
EnableWindow
GetClientRect
BeginPaint
GetSysColor
SetWindowTextW
EndDialog
CharNextW
GetDlgItem
LoadCursorW
ReleaseDC
CreateWindowExW
SetDlgItemTextW
SendDlgItemMessageW
SetDlgItemTextW
GetParent
DestroyWindow
GetDC
DefWindowProcW
KillTimer
IsWindow
LoadCursorW
BeginPaint
BeginPaint
GetParent
DestroyWindow
PeekMessageW
SetForegroundWindow
SendMessageW
SetDlgItemTextW
IsWindow
CreateWindowExW
BeginPaint
GetDlgItem
ReleaseDC
TranslateMessage

Sections

.text
Size: 718KB - Virtual size: 968KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7c3c39bb700c12e22d591a0e1fa3a75

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 718KB - Virtual size: 968KB

.rdata Size: 4KB - Virtual size: 8KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 718KB - Virtual size: 968KB

.rdata
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 82KB - Virtual size: 84KB