619e08163c3aa2551d42b2f87bc519bf[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

619e08163c3aa2551d42b2f87bc519bf.exe
Size

951KB
MD5

619e08163c3aa2551d42b2f87bc519bf
SHA1

321128283a5a1a7f7e0c9cc658736c50cbb59552
SHA256

79c6fe3c86dadd87390eff8962515cf1699fcc685159771f529217626b0c752b
SHA512

af7504488f50aa62b7918d9fb7211e2f91ce2407dc3b34dad9328d763bb03e9435ea718611bfe11869829e0c0595e3acfa93a35bef447fa4e049cbf6f7d8d57b
SSDEEP

24576:fk9P+sDeo9XTGzDNvUrCH1tJa3dLqdTOPgqClXpsO93fpVu:fk9xep5WZQVqK663fpw

Score

1^/10

Malware Config

Signatures

Files

619e08163c3aa2551d42b2f87bc519bf.exe
.exe windows x86

1607e2459ff2a25e216d58a93158717a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
GetProcessHeap
GetVersionExW
GetFileSize
LockFileEx
GetFileAttributesW
LocalFree
CreateFileMappingA
WaitForSingleObject
UnlockFile
HeapDestroy
CreateMutexW
GetTempPathW
HeapCompact
UnlockFileEx
SetEndOfFile
GetFullPathNameA
HeapAlloc
SetFilePointer
LoadLibraryW
LockFile
GetSystemInfo
HeapReAlloc
DeleteFileW
DeleteFileA
GetVersionExA
WaitForSingleObjectEx
OutputDebugStringA
GetDiskFreeSpaceW
InterlockedCompareExchange
FlushFileBuffers
WriteFile
CreateFileA
FlushViewOfFile
GetFullPathNameW
OutputDebugStringW
GetCurrentThreadId
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
LockResource
GlobalFree
VirtualAlloc
GetEnvironmentStrings
LoadResource
GetLocalTime
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateEventA
FindResourceA
GlobalAddAtomA
GetTimeFormatA
GetDateFormatA
GetConsoleWindow
SetEvent
TlsGetValue
CreateEventExA
SetLastError
InitializeCriticalSectionEx
ResetEvent
SetErrorMode
GetModuleFileNameA
GetModuleHandleExA
TlsAlloc
TlsSetValue
TlsFree
ReleaseSemaphore
CreateSemaphoreExA
ResumeThread
GetProcessAffinityMask
AreFileApisANSI
GetNativeSystemInfo
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
GetTimeZoneInformation
SetStdHandle
GetCurrentDirectoryW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetStringTypeW
LCMapStringW
CompareStringW
GetACP
ExitThread
FindNextFileW
FindFirstFileExW
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetDriveTypeW
ExitProcess
WriteConsoleW
GetModuleHandleExW
GetFileType
VirtualQuery
RtlUnwind
UnregisterWaitEx
QueryDepthSList
UnmapViewOfFile
HeapValidate
ReadFile
SwitchToThread
HeapSize
GetSystemTimeAsFileTime
FormatMessageA
MultiByteToWideChar
CreateFileMappingW
Sleep
FormatMessageW
MapViewOfFile
GetDiskFreeSpaceA
HeapCreate
GetLastError
GetTickCount
GetFileAttributesA
HeapFree
GetFileAttributesExW
FindFirstFileW
CreateFileW
GetEnvironmentVariableA
LoadLibraryA
SystemTimeToFileTime
GetSystemTime
CloseHandle
FindClose
GetStdHandle
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
VirtualProtect
VirtualFree
LoadLibraryExW
GetModuleHandleA
GetModuleFileNameW
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
GetCurrentProcessId
GetCurrentProcess
GetProcAddress
CreateTimerQueueTimer
GetLogicalProcessorInformation
FreeLibrary
QueryPerformanceFrequency
GetThreadPriority
SetThreadPriority
QueryPerformanceCounter
SetCurrentDirectoryA
GetTempPathA
GetCurrentThread
CreateThread
SignalObjectAndWait
CreateTimerQueue
TerminateProcess
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
InitializeSListHead
GetModuleHandleW
CreateEventW
InitializeCriticalSectionAndSpinCount
RaiseException
DecodePointer
EncodePointer
DuplicateHandle

user32

SetWindowPos
ShowWindow
DestroyWindow
IsWindow
EndDeferWindowPos
IsWindowVisible
EndDialog
GetDlgItem
SetDlgItemInt
SendMessageA
CheckDlgButton
IsDlgButtonChecked
SendDlgItemMessageA
GetDlgCtrlID
SendInput
SetCapture
EnableWindow
LoadMenuA
CreateMenu
AppendMenuA
DrawIcon
GetDlgItemTextA
GetWindowLongA
DrawIconEx
LookupIconIdFromDirectory
LoadIconA
DrawTextA
GetWindow
FindWindowExA
FindWindowA
EnumChildWindows
GetParent
SetWindowLongA
LoadBitmapA
OffsetRect
ClientToScreen
HideCaret
GetCursorPos
ShowCursor
MessageBoxA
GetClientRect
SetWindowTextA
SetScrollRange
EndPaint
BeginPaint
ReleaseDC
GetDC
SetActiveWindow

gdi32

SetWindowExtEx
GetObjectA
CreateHalftonePalette
SetTextColor
SetStretchBltMode
SelectPalette
SelectObject
RealizePalette
GetStockObject
GetDeviceCaps
DeleteObject
CreatePen
CombineRgn
BitBlt
CreateSolidBrush

advapi32

CryptHashData
ImpersonateLoggedOnUser
CryptAcquireContextA
CryptReleaseContext
CryptGenKey
CryptDeriveKey
CryptDestroyKey
CryptSetKeyParam
CryptGetHashParam
CryptGetProvParam
CryptDuplicateKey
CryptDestroyHash
GetUserNameW
CryptCreateHash
CryptGetUserKey
CryptGenRandom

shell32

SHCreateShellItem

ole32

RegisterDragDrop

oleaut32

SystemTimeToVariantTime

wininet

CommitUrlCacheEntryW
FtpRemoveDirectoryA
CreateMD5SSOHash
FtpSetCurrentDirectoryA
FtpGetFileW
FtpPutFileA

ws2_32

WSAGetLastError

netapi32

NetUserGetInfo

avifil32

AVISaveOptions

avicap32

capCreateCaptureWindowA

winmm

SendDriverMessage

crypt32

CertEnumPhysicalStore

shlwapi

PathCompactPathA

comctl32

ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_Draw

pdh

PdhBrowseCountersA
PdhMakeCounterPathA
PdhCloseQuery
PdhGetFormattedCounterValue
PdhOpenQueryA
PdhAddCounterA
PdhRemoveCounter
PdhCollectQueryData

rpcrt4

UuidCreate
UuidToStringW

opengl32

wglCreateContext
wglMakeCurrent

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo

urlmon

FindMediaType

Sections

.text
Size: 699KB - Virtual size: 699KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1607e2459ff2a25e216d58a93158717a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

wininet

ws2_32

netapi32

avifil32

avicap32

winmm

crypt32

shlwapi

comctl32

pdh

rpcrt4

opengl32

setupapi

urlmon

Sections

.text Size: 699KB - Virtual size: 699KB

.rdata Size: 135KB - Virtual size: 134KB

.data Size: 21KB - Virtual size: 62KB

.gfids Size: 3KB - Virtual size: 2KB

.rsrc Size: 91KB - Virtual size: 91KB

.text
Size: 699KB - Virtual size: 699KB

.rdata
Size: 135KB - Virtual size: 134KB

.data
Size: 21KB - Virtual size: 62KB

.gfids
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 91KB - Virtual size: 91KB