d60d04f849927888e4b416e3f5064f518d0cbef7e91cc67d3d9e8824bfaad641[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

d60d04f849927888e4b416e3f5064f518d0cbef7e91cc67d3d9e8824bfaad641.exe
Size

2.5MB
MD5

6206dea2bf6196957d704e499e2f4218
SHA1

388dbc7a4b26f64ee1ede8c37bf969e1bcef7ed2
SHA256

d60d04f849927888e4b416e3f5064f518d0cbef7e91cc67d3d9e8824bfaad641
SHA512

e3d1ce8f7130756f81c8b579c4eb7ad0187e7c33768e0c5250c339dce0342ebf0a274e696c1af97970c87eee43d65ee74683a06418abdc808b913aedfb51ba75
SSDEEP

49152:JI2fq0JHJerQ0ERLbhTcDiJL8Psy2ZSL5W/KwX5:JIx0JHJerQ0ERBTcDiJQPsy2ZSL5W/Ke

Score

1^/10

Malware Config

Signatures

Files

d60d04f849927888e4b416e3f5064f518d0cbef7e91cc67d3d9e8824bfaad641.exe
.exe windows x86

26ce28be5d2f4e0be53e03313d90210b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
_exit
_controlfp
__set_app_type
__p__fmode
__p__commode
_except_handler3
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter

winmm

waveOutWrite
waveOutRestart
waveOutSetPitch
waveOutSetPlaybackRate
waveOutSetVolume
waveOutUnprepareHeader
waveOutReset

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

TlsGetValue
SuspendThread
TlsSetValue
SizeofResource
SetThreadPriority
SetThreadLocale
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
SleepEx
GetLastError
SetFilePointer
SetEvent
LoadLibraryA
LeaveCriticalSection
ExitProcess
GetTickCount
EnterCriticalSection
InitializeCriticalSection
GetCommandLineA
GetCPInfo
IsValidCodePage
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
QueryPerformanceCounter
FindClose
SetEndOfFile
DeleteCriticalSection
DeviceIoControl
EnumCalendarInfoA
ExitThread
FatalAppExitA
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetACP
GetCurrentDirectoryA
GetDateFormatA
GetDiskFreeSpaceA
GetDriveTypeA
GetExitCodeThread
GetFileAttributesA
GetFileSize
GetFileType
GetLocaleInfoA
GetLocalTime
GetLogicalDriveStringsA
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileStringA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetSystemInfo
GetSystemTime
GetThreadLocale
GetVersionExA
GetVolumeInformationA
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFree
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalSize
InterlockedDecrement
InterlockedIncrement
IsDBCSLeadByte
LoadLibraryExA
LoadResource
LocalAlloc
LocalFree
LockResource
lstrcmpA
lstrcpyA
lstrcpynA
lstrlenA
lstrlenW
MapViewOfFile
MulDiv
MultiByteToWideChar
OpenFileMappingA
OpenProcess
RaiseException
ReadFile
ReleaseMutex
ResetEvent
ResumeThread
SearchPathA
SetErrorMode

user32

WinHelpA
DrawMenuBar
CharToOemA
CharToOemBuffA
CharUpperBuffA
CheckMenuItem
ChildWindowFromPoint
ClientToScreen
ClipCursor
CloseClipboard
CopyImage
CopyRect
CreateCaret
CreateIconIndirect
CreateMenu
CreatePopupMenu
CreateWindowExA
DefFrameProcA
DefMDIChildProcA
DefWindowProcA
DeleteMenu
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DispatchMessageA
DrawEdge
DrawFocusRect
DrawFrameControl
DrawIconEx
DrawTextA
DrawTextW
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EnumChildWindows
EnumClipboardFormats
EnumThreadWindows
EnumWindows
EqualRect
FillRect
FindWindowA
FindWindowExA
FrameRect
GetActiveWindow
GetCapture
GetClassInfoA
GetClassLongA
GetClassNameA
GetClientRect
GetClipboardData
GetClipboardFormatNameA
GetCursorPos
GetDCEx
GetDesktopWindow
GetDlgItem
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyboardLayoutList
GetKeyboardState
GetKeyboardType
GetKeyNameTextA
GetKeyState
GetLastActivePopup
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuItemRect
GetMenuState
GetMenuStringA
GetMessageA
GetMessagePos
GetMessageTime
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetUpdateRect
GetWindowDC
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
HideCaret
InflateRect
InsertMenuA
InsertMenuItemA
IntersectRect
InvalidateRect
IsCharAlphaA
IsCharAlphaNumericA
IsChild
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsRectEmpty
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadKeyboardLayoutA
LoadStringA
LockWindowUpdate
MapVirtualKeyA
MapWindowPoints
MessageBeep
MessageBoxA
MoveWindow
MsgWaitForMultipleObjects
OemToCharA
OemToCharBuffA
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterHotKey
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollDC
ScrollWindowEx
SendMessageA
SetActiveWindow
SetCapture
SetClassLongA
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetKeyboardState
SetMenuItemInfoA
SetParent
SetPropA
SetRect
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowsHookExA
SetWindowTextA
ShowCaret
ShowCursor
ShowOwnedPopups
ShowScrollBar
ShowWindow
SubtractRect
SystemParametersInfoA
SystemParametersInfoW
ToAscii
TrackPopupMenu
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UnregisterHotKey
UpdateWindow
ValidateRect
WaitMessage
WindowFromDC
WindowFromPoint

winspool.drv

StartDocPrinterW
XcvDataW
WaitForPrinterChange
WritePrinter
StartPagePrinter
StartDocPrinterA

advapi32

RegCloseKey
RegOpenKeyExA
IsValidSecurityDescriptor
RegCreateKeyExA
RegDeleteValueA
RegFlushKey
RegSetValueExA
SetSecurityDescriptorDacl
RegQueryValueExA

ws2_32

inet_addr

Sections

.text
Size: 440KB - Virtual size: 436KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 34B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fie225
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

26ce28be5d2f4e0be53e03313d90210b

Headers

File Characteristics

Imports

msvcrt

winmm

version

kernel32

user32

winspool.drv

advapi32

ws2_32

Sections

.text Size: 440KB - Virtual size: 436KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 14.0MB

.tls Size: 4KB - Virtual size: 34B

.rsrc Size: 324KB - Virtual size: 324KB

.fie225 Size: 1.8MB - Virtual size: 1.8MB

.text
Size: 440KB - Virtual size: 436KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 14.0MB

.tls
Size: 4KB - Virtual size: 34B

.rsrc
Size: 324KB - Virtual size: 324KB

.fie225
Size: 1.8MB - Virtual size: 1.8MB