6d9fe547ad742eccd4ed7f6be080e5e807133d07b09347908ed2c380ca67c273

Sharing

Copy URL Twitter E-mail

General

Target

6d9fe547ad742eccd4ed7f6be080e5e807133d07b09347908ed2c380ca67c273
Size

321KB
MD5

d73088d42c379dadc4bf8d6505552565
SHA1

b580d5fdfb2ae8b387406fbc0a77b4060a3ae668
SHA256

6d9fe547ad742eccd4ed7f6be080e5e807133d07b09347908ed2c380ca67c273
SHA512

ad969d3b9fdb0b8ad42b00738f2b2ecd06f92660efaf445e74d6c56621d2da7f922164a3e33a25d812bf8ec845d94bcbce9238de0069d34bbc8d264001f27a65
SSDEEP

6144:Hi444Rf+2mkOmdP2ESqZ+E62c3PmSF5eFle6+kz5RfKVv/DMDIgU:ZibF5eFle6PzCVnDM

Score

N/A

Malware Config

Signatures

Files

6d9fe547ad742eccd4ed7f6be080e5e807133d07b09347908ed2c380ca67c273
.exe windows x86

5cab20ddbd3361913495d590ef5b1266

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
IsDebuggerPresent
CheckRemoteDebuggerPresent
GetCommandLineW
SetErrorMode
CreateProcessW
CreateDirectoryW
CopyFileW
GetFileAttributesW
GetModuleFileNameW
GetLastError
SetCurrentDirectoryW
CloseHandle
LocalFree
GetSystemTime
SetFileAttributesW
FindResourceA
LoadResource
SizeofResource
MultiByteToWideChar
LockResource
GlobalSize
GlobalLock
WaitForSingleObject
GetTickCount
GlobalAlloc
Sleep
GlobalUnlock
GlobalFree
GetCurrentThread
OpenMutexA
CreateMutexA
ReleaseMutex
QueryPerformanceCounter
GetModuleHandleW
ReadFile
CreateFileW
GetTimeZoneInformation
CompareStringW
GetDateFormatA
GetTimeFormatA
InitializeCriticalSection
InterlockedCompareExchange
FlushFileBuffers
WriteConsoleW
SetStdHandle
HeapSize
RtlUnwind
HeapReAlloc
GetConsoleMode
GetConsoleCP
SetFilePointer
LoadLibraryW
InterlockedExchange
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetCurrentProcess
GetThreadContext
LoadLibraryA
ExitProcess
GetUserDefaultLCID
EnterCriticalSection
SetEnvironmentVariableA
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
HeapFree
HeapAlloc
InterlockedDecrement
GetCPInfo
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
InterlockedIncrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
WriteFile
GetStdHandle
WideCharToMultiByte
LCMapStringW
GetStringTypeW
GetLocaleInfoW
RaiseException
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection

user32

OpenClipboard
SetClipboardData
SetTimer
UnregisterClassA
CreateWindowExA
ShowWindow
GetClassInfoA
RegisterClassA
DestroyWindow
CloseClipboard
MessageBoxW
PostQuitMessage
KillTimer
IsClipboardFormatAvailable
SendMessageA
TranslateMessage
GetClipboardData
PeekMessageA
EmptyClipboard
DefWindowProcA
DispatchMessageA

advapi32

RegCloseKey
RegCreateKeyExW
RegSetValueExW

shell32

CommandLineToArgvW
SHGetFolderPathW

ole32

CoInitializeEx
CoUninitialize
CoCreateInstance

Sections

.text
Size: 255KB - Virtual size: 254KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5cab20ddbd3361913495d590ef5b1266

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

Sections

.text Size: 255KB - Virtual size: 254KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 10KB - Virtual size: 19KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 14KB - Virtual size: 14KB

.text
Size: 255KB - Virtual size: 254KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 10KB - Virtual size: 19KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 14KB - Virtual size: 14KB