950cd430d1712e9bda8b9e64b27cb964c75c7d7573164c78a4691bcf4233df6c

Sharing

Copy URL Twitter E-mail

General

Target

950cd430d1712e9bda8b9e64b27cb964c75c7d7573164c78a4691bcf4233df6c
Size

296KB
MD5

dd75196f3ac3e8c031060a7517555688
SHA1

bc78f2e3c29831b8ce857b77ce04c01652ad218e
SHA256

950cd430d1712e9bda8b9e64b27cb964c75c7d7573164c78a4691bcf4233df6c
SHA512

da5ab2bcbf69954281bdc5e948a69a972d7467304837ba93c827abd6b1388fa4e32b429de13a45dfd58f2aa90069a3af5d3055312d6818212f09745b418e46d3
SSDEEP

3072:0rpxstsTcHih5BM9JrNcvwF2poQr5KuF8oOvCagtdp8opU5JlfBK/Z6x:qHQoS2i9toX3ULNgV8opoJTK/Ix

Score

N/A

Malware Config

Signatures

Files

950cd430d1712e9bda8b9e64b27cb964c75c7d7573164c78a4691bcf4233df6c
.exe windows x86

f41ba14cb988cdbbd5ff05c585e67090

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
ExitThread
UnmapViewOfFile
GetFileSize
FindFirstFileA
GetProcAddress
LoadLibraryA
FindNextFileA
GetLastError
IsDBCSLeadByte
Sleep
LocalFree
GetComputerNameA
ResumeThread
SuspendThread
SetFileTime
SetFileAttributesA
CreateDirectoryA
GetFileAttributesA
CreateFileMappingA
GetFileInformationByHandle
FreeLibrary
MapViewOfFile
IsBadReadPtr
GetTickCount
CreateThread
GetFullPathNameA
CreateFileA
SetFilePointer
WriteFile
GetCurrentDirectoryA
GetWindowsDirectoryA
SetCurrentDirectoryA
GetDriveTypeA
CreateMutexA
WaitForSingleObject
ReleaseMutex
CloseHandle
ExitProcess
GetSystemTime
SystemTimeToFileTime
GetLocalTime
HeapAlloc
GetModuleHandleA
GetStartupInfoA
HeapReAlloc
HeapDestroy
HeapCreate
GetCommandLineA
VirtualAlloc
VirtualFree
GetCurrentProcess
WideCharToMultiByte
TerminateProcess
LCMapStringA
LCMapStringW
MultiByteToWideChar
GetModuleFileNameA
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
GetVersion
HeapFree

user32

GetClientRect
GetParent
SetDlgItemTextA
DispatchMessageA
TranslateMessage
GetMessageA
DefWindowProcA
CreateDialogParamA
GetWindowLongA
IsDialogMessageA
TranslateAcceleratorA
DestroyWindow
EndDialog
IsWindow
UpdateWindow
GetDlgItemTextA
BringWindowToTop
SystemParametersInfoA
AttachThreadInput
GetWindowThreadProcessId
IsWindowEnabled
DeferWindowPos
RegisterHotKey
GetWindowRect
GetDlgItem
PeekMessageA
CallWindowProcA
LoadMenuA
GetSubMenu
GetMenuItemCount
GetMenuStringA
SetWindowLongA
CreatePopupMenu
ModifyMenuA
BeginDeferWindowPos
AppendMenuA
DestroyMenu
GetAsyncKeyState
KillTimer
SetTimer
PostQuitMessage
RegisterWindowMessageA
LoadAcceleratorsA
GetSystemMetrics
SendMessageA
MessageBoxA
LoadIconA
CreateWindowExA
SendDlgItemMessageA
GetWindow
SetCapture
GetCursorPos
ScreenToClient
InvalidateRgn
MoveWindow
EndDeferWindowPos
IsWindowVisible
IsDlgButtonChecked
SetActiveWindow
GetForegroundWindow
GetWindowTextA
LoadCursorA
FindWindowA
RegisterClassA
SetForegroundWindow
wsprintfA
PostMessageA
UnregisterHotKey
SetCursor
GetWindowPlacement
EnableWindow
ShowWindow
SetClassLongA
SetWindowPlacement
SetFocus
GetMessagePos
FlashWindow
SetWindowTextA
CreateMenu
TrackPopupMenu
MessageBeep
GetSystemMenu
InsertMenuA
GetMenuItemID
SetWindowWord
DeleteMenu
GetWindowWord
ReleaseCapture
DialogBoxParamA

gdi32

CreateFontIndirectA
GetObjectA
DeleteObject

comdlg32

GetSaveFileNameA
ChooseFontA
GetOpenFileNameA

advapi32

RegDeleteKeyA
GetUserNameA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegQueryValueA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegEnumKeyExA
RegEnumValueA

shell32

DragQueryFileA
DragFinish
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
ExtractIconA
ShellExecuteA
Shell_NotifyIconA

ole32

CoInitialize
CoUninitialize

winmm

PlaySoundA

comctl32

ImageList_ReplaceIcon
ImageList_Create
ImageList_Destroy
ord17

wsock32

listen
accept
recvfrom
sendto
WSAAsyncSelect
WSACleanup
WSAStartup
socket
bind
inet_ntoa
ntohl
connect
gethostname
gethostbyname
ioctlsocket
send
select
recv
closesocket
htons
inet_addr
setsockopt
WSAGetLastError

Sections

.text
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qghfpfz
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f41ba14cb988cdbbd5ff05c585e67090

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

winmm

comctl32

wsock32

Sections

.text Size: 104KB - Virtual size: 101KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 16KB - Virtual size: 13KB

.rsrc Size: 156KB - Virtual size: 156KB

qghfpfz Size: - Virtual size: 4KB

.text
Size: 104KB - Virtual size: 101KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 16KB - Virtual size: 13KB

.rsrc
Size: 156KB - Virtual size: 156KB

qghfpfz
Size: - Virtual size: 4KB