70c24fbd8539eb7a4bf0b8c45172be65c45909e267e33644526454aab040d5a9

Sharing

Copy URL Twitter E-mail

General

Target

70c24fbd8539eb7a4bf0b8c45172be65c45909e267e33644526454aab040d5a9
Size

88KB
MD5

0dd5e114edbd4481639f344440934950
SHA1

5829f1ae1ad28d48f9dd00f96880f3d3a2366362
SHA256

70c24fbd8539eb7a4bf0b8c45172be65c45909e267e33644526454aab040d5a9
SHA512

4ced8df9e84e595c0934f90b5daff1f47fd44056a5599c0a9ce4d75c991f22cf5ba8cd9a593b4426a5c3167f9016c4b6d39c1d672a80402d8f7def1b5a8bc7bb
SSDEEP

1536:CMx0EqnbFs4YCZOeBfiaQYfkvPCIloqYRY:CMxWbFs47OeJiaQQkvqooK

Score

N/A

Malware Config

Signatures

Files

70c24fbd8539eb7a4bf0b8c45172be65c45909e267e33644526454aab040d5a9
.exe windows x86

127f140950bc34d76f198692c4e9dc5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
lstrlenW
FindClose
GetWindowsDirectoryA
GlobalAlloc
lstrcmpA
FindFirstFileA
lstrcpyW
MultiByteToWideChar
GlobalLock
GetSystemDirectoryA
_lread
CopyFileA
_lcreat
lstrcpyA
lstrcatA
_lopen
_llseek
_lwrite
SetCurrentDirectoryA
FindNextFileA
GlobalUnlock
HeapFree
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
VirtualAlloc
SetUnhandledExceptionFilter
HeapSize
HeapReAlloc
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapAlloc
RaiseException
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
InterlockedDecrement
RtlUnwind
_lclose
GetStringTypeA
GetStringTypeW
LocalFree
GetLastError
lstrlenA
Sleep
GlobalFree
LCMapStringW
LCMapStringA
LoadLibraryA

user32

ScreenToClient
GetCursorPos
TranslateMessage
DispatchMessageW
GetMessageW
RegisterClassExW
LoadCursorW
LoadIconW
UpdateWindow
SetWindowTextA
wsprintfA
SetWindowPos
ShowWindow
SetTimer
MessageBoxW
MessageBoxA
GetDC
ReleaseDC
GetClientRect
DestroyWindow
PostQuitMessage
SetRect
BeginPaint
EndPaint
GetWindowTextA
KillTimer
DefWindowProcW
MoveWindow
PostMessageW
InvalidateRect
CreateWindowExW

gdi32

CreateCompatibleDC
CreateFontW
DeleteObject
TextOutW
SetTextColor
SetBkMode
SelectObject
TextOutA
CreateSolidBrush
Rectangle
GetStockObject
DeleteDC
StretchBlt
CreateDIBitmap

comdlg32

GetOpenFileNameA

shell32

SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA

oleaut32

GetErrorInfo
VariantClear
SysFreeString
OleLoadPicture
SysAllocString

wininet

InternetOpenUrlA
HttpQueryInfoW
InternetOpenA
InternetCloseHandle
InternetReadFile

ole32

CoUninitialize
CoInitialize
CreateStreamOnHGlobal

atl

ord42
ord47

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

127f140950bc34d76f198692c4e9dc5b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

oleaut32

wininet

ole32

atl

Sections

.text Size: 64KB - Virtual size: 61KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 64KB - Virtual size: 61KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 1KB