f002d9e575d3e2d873f7d4be331a5615

Sharing

Copy URL

Twitter E-mail

General

Target

f002d9e575d3e2d873f7d4be331a5615
Size

54KB
MD5

f002d9e575d3e2d873f7d4be331a5615
SHA1

cc20d4b5e2a98c225b006a470cf02cb71052b659
SHA256

38bdef89810064d59177528f80cf6ace04acfb743195321fcada4fd7f576b9a1
SHA512

7aa6c1d2c2c1769fa0170cee839f4ba46b9817db05f75062df5eddba39f872eea8a5a9107131f3cb634549252d6c5f9d47dfe5c0e7256984110395d363804b75
SSDEEP

768:LHahwAwLz1dXmpCL6eTdG5eVP5ubYAOEjYMNWZDiSrr2INKoWTB6Y/famem:LHt1GW6eTd2eV5kFmdoqme

Score

1^/10

Malware Config

Signatures

Files

f002d9e575d3e2d873f7d4be331a5615
.exe windows x86

e660360e9b49d39062886798924e4f6b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

imm32

ImmSetCompositionStringW
ImmCreateIMCC
ImmUnlockIMC
ImmDestroyIMCC
ImmGetContext
ImmEscapeA
ImmInstallIMEW

kernel32

LCMapStringEx
HeapReAlloc
HeapSize
SetStdHandle
GetConsoleCP
FlushFileBuffers
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
Sleep
MultiByteToWideChar
CreateFileW
ReadFile
GetConsoleWindow
GetProcessHeap
GetModuleHandleW
TerminateProcess
HeapFree
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount64
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetCurrentThreadId
InterlockedIncrement
SetLastError
GetStartupInfoW
InitOnceExecuteOnce
DeleteCriticalSection
SetFilePointerEx
SetFilePointer
ReadConsoleW
GetConsoleMode
RtlUnwind
InitializeCriticalSectionAndSpinCount
WriteFile
LoadLibraryW
LoadLibraryExW
OutputDebugStringW
LeaveCriticalSection
EnterCriticalSection
AreFileApisANSI
GetProcAddress
InterlockedDecrement
GetLastError
IsProcessorFeaturePresent
DecodePointer
EncodePointer
SetEndOfFile
IsDebuggerPresent
GetCommandLineA
WriteConsoleW
GetModuleHandleExW
GetModuleFileNameW
GetFileType
GetStdHandle
HeapAlloc
GetFileSize
GetCommandLineW
ExitProcess
GetStringTypeW
lstrcpyW
CloseHandle
VirtualAlloc
GetModuleFileNameA
GetCurrentProcess

wininet

ShowSecurityInfo
FtpOpenFileA
FindNextUrlCacheEntryA
InternetOpenA
InternetErrorDlg
FindFirstUrlCacheEntryA

oleaut32

DosDateTimeToVariantTime
VarNumFromParseNum
VarDateFromUI1
DispGetIDsOfNames
VarDecFromUI1
VarUI1FromR4
VarI2FromI1
VarI4FromCy
VarBoolFromDate

pdh

PdhEnumObjectItemsA

comdlg32

ReplaceTextW
GetSaveFileNameW
PrintDlgA
PrintDlgW

ws2_32

ntohl
WSAAsyncGetProtoByNumber
WSASocketW

setupapi

SetupDiCreateDevRegKeyA

mswsock

GetTypeByNameW
dn_expand
EnumProtocolsA
getnetbyname
TransmitFile
inet_network
EnumProtocolsW
GetServiceA
GetNameByTypeA
WSARecvEx

user32

ShowWindow
GetSystemMetrics
SendMessageW
UpdateWindow
SetWindowTextW
GetMonitorInfoW
GetDlgItem
LoadAcceleratorsW
TranslateMessage
SetFocus
GetParent
LoadImageW
RegisterWindowMessageW
GetMessageW
LoadIconW
DispatchMessageW
RegisterClassExW
MonitorFromRect
IsDialogMessageW
TranslateAcceleratorW
GetWindowTextLengthW
LoadCursorW

advapi32

IsTextUnicode

shell32

DragAcceptFiles

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e660360e9b49d39062886798924e4f6b

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

imm32

kernel32

wininet

oleaut32

pdh

comdlg32

ws2_32

setupapi

mswsock

user32

advapi32

shell32

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 16KB

.rsrc Size: 512B - Virtual size: 480B

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 16KB

.rsrc
Size: 512B - Virtual size: 480B