79b8c026d2e90a16b4a585f38be231828bc9d52255948d4a7d9248bb25e882d1

Sharing

Copy URL

Twitter E-mail

General

Target

79b8c026d2e90a16b4a585f38be231828bc9d52255948d4a7d9248bb25e882d1
Size

428KB
MD5

5cd725ccdd4a940bc19c9bcd69768798
SHA1

cb5c0c4ed17bc9dd83c85777ecb2f37ec060c50d
SHA256

79b8c026d2e90a16b4a585f38be231828bc9d52255948d4a7d9248bb25e882d1
SHA512

3ac834a0b1e9d9693e5e598c8132d1e33594415be90ee6ba321144c4128bedbfefd0420926729d5e8469ee616ed986b03f8a1c822704ff9537fe17ce7cfa4605
SSDEEP

6144:U9nXFNky+V6KJZ5IP9zHX00YXoOzlVTnHHZVaAG72I+rpuTPoeSyaY9B:UlXFNky+V6KPOVQ9LzTHZV4axaPogVL

Score

N/A

Malware Config

Signatures

Files

79b8c026d2e90a16b4a585f38be231828bc9d52255948d4a7d9248bb25e882d1
.exe windows x86

d039266aa998267ab2332d0d434315a5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
HeapSize
AreFileApisANSI
ExitProcess
WriteFile
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
GetCurrentThreadId
GetProcessHeap
CloseHandle
FlushFileBuffers
GlobalAlloc
GetConsoleCP
GetConsoleMode
ReadFile
SetFilePointerEx
OutputDebugStringW
LoadLibraryExW
LoadLibraryW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
GetACP
GetOEMCP
HeapReAlloc
SetFilePointer
SetStdHandle
ReadConsoleW
CreateFileW
SetEndOfFile
EnumDateFormatsA
GetPrivateProfileIntA
GetModuleHandleA
LoadLibraryA
GetLastError
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetProcAddress
Sleep
TerminateProcess
GetCurrentProcess
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
InitializeCriticalSectionAndSpinCount
GetCommandLineA
HeapAlloc
RtlUnwind
RaiseException
GetTickCount
GetProcessWorkingSetSize
InterlockedIncrement
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW
IsProcessorFeaturePresent
HeapFree
GetSystemTimeAsFileTime
GetStdHandle
GetFileType
GetModuleFileNameW
GetModuleHandleExW
WriteConsoleW

user32

RegisterClassA
CreateWindowExA
ShowWindow
PostQuitMessage
DefWindowProcA
DispatchMessageA
TranslateMessage
GetMessageA
wsprintfA
SystemParametersInfoA
LoadImageA
GetParent
OffsetRect
SetRect
FillRect
GetWindowRect
ReleaseDC
GetDC
GetSystemMetrics
DestroyWindow
RegisterClassExA
UnregisterClassA
SendMessageA
PeekMessageA
LoadIconA
LoadCursorA
LoadBitmapA
SetWindowLongA
GetWindowLongA
GetClientRect
InvalidateRgn
EndPaint
BeginPaint
UpdateWindow
KillTimer
SetTimer
SetWindowPos
SetLayeredWindowAttributes

gdi32

StretchBlt
GetKerningPairsA
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
MoveToEx
ExtCreatePen
StrokePath
EndPath
BeginPath
PlayEnhMetaFile
GetEnhMetaFileA
DeleteEnhMetaFile
CreateEnhMetaFileA
CloseEnhMetaFile
SetMapMode
SelectClipRgn
Rectangle
LineTo
GetSystemPaletteEntries
GetOutlineTextMetricsA
CreateSolidBrush
CreateRectRgnIndirect
CreatePalette
CreateFontIndirectA
TextOutA
GetObjectA
GetStockObject
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt

oleaut32

OleSavePictureFile

odbc32

ord245
ord241
ord242

winmm

PlaySoundA

netapi32

NetWkstaUserGetInfo

avifil32

AVIStreamWrite

msacm32

acmFormatTagDetailsA

winscard

SCardEstablishContext
SCardListReadersA
SCardConnectA
SCardTransmit
g_rgSCardT0Pci

shlwapi

StrChrA

d2d1

ord1

dwrite

DWriteCreateFactory

Sections

.text
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d039266aa998267ab2332d0d434315a5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

oleaut32

odbc32

winmm

netapi32

avifil32

msacm32

winscard

shlwapi

d2d1

dwrite

Sections

.text Size: 162KB - Virtual size: 161KB

.rdata Size: 60KB - Virtual size: 60KB

.data Size: 7KB - Virtual size: 19KB

.rsrc Size: 197KB - Virtual size: 197KB

.text
Size: 162KB - Virtual size: 161KB

.rdata
Size: 60KB - Virtual size: 60KB

.data
Size: 7KB - Virtual size: 19KB

.rsrc
Size: 197KB - Virtual size: 197KB