5bf2b0d4b1ac39e443bfedb8785fc5963e85c8f80fce2a91f7d236000a47c98b[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

5bf2b0d4b1ac39e443bfedb8785fc5963e85c8f80fce2a91f7d236000a47c98b.exe
Size

364KB
MD5

b6ec835433cc2d27b5547b3b869896bd
SHA1

72f4d21d9deaa9ecaf5d3b3c48197a42d7b3f44f
SHA256

5bf2b0d4b1ac39e443bfedb8785fc5963e85c8f80fce2a91f7d236000a47c98b
SHA512

82ce9267b33414fbb4ae5e2df7e7433096ad88ebf2287815986c8b34459b0c9aa080d4a154326bf189ecfbac7a9d679f9f55f609c628d41e7bada7a8ba5fc8b4
SSDEEP

6144:QPPhHsO1YPCphfpAORQ2UvOL5NM5d9BwWe1pZwd8h1t2:iPhMO1YPkrDHUgXWqpZwahe

Score

1^/10

Malware Config

Signatures

Files

5bf2b0d4b1ac39e443bfedb8785fc5963e85c8f80fce2a91f7d236000a47c98b.exe
.exe windows x86

e1d1643020eb0a615503fd440bdd39d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
HeapSize
InitializeCriticalSection
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetFilePointer
SetStdHandle
CreateEventA
WaitForSingleObject
lstrcpyA
LCMapStringW
GetModuleHandleA
GetProcAddress
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
Sleep
ExitProcess
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
LeaveCriticalSection
EnterCriticalSection
GetStartupInfoA
GetVersionExA
HeapFree
GetCommandLineA
RtlUnwind
GetWindowsDirectoryA
CreateNamedPipeA
WaitForMultipleObjects
GetModuleFileNameA
MultiByteToWideChar
GetLastError
GetProcessHeap
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
HeapAlloc
LocalAlloc
CreateFileA
WaitNamedPipeA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
CreateThread
GetCurrentThreadId
LoadLibraryA
GetStringTypeA
ExitThread
SetNamedPipeHandleState
CloseHandle

user32

BeginPaint
EndPaint
CallWindowProcA
GetWindowRect
SetWindowPos
SetScrollPos
SetScrollRange
GetDlgItem
GetMenuItemCount
EnumDesktopsA
GetMenuItemRect
GetMenuItemInfoA
ReleaseDC
GetDlgCtrlID
GetDC
SystemParametersInfoA
GetSystemMetrics
DrawFrameControl
GetWindowLongA
SetTimer
GetCursorPos
ScreenToClient
GetClientRect
PtInRect
InvalidateRect
KillTimer
IsDlgButtonChecked
BeginDeferWindowPos
DefWindowProcA
LoadCursorA
DialogBoxParamA
SendMessageA
InflateRect
DefMDIChildProcA
DdeCreateStringHandleW
EnableMenuItem
IsClipboardFormatAvailable
MessageBoxA
GetMenuCheckMarkDimensions
LoadImageA
LookupIconIdFromDirectory
CopyRect
FillRect

gdi32

CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
GetDeviceCaps
CreateHatchBrush
SetBkColor
Ellipse
BitBlt
GetPixel
SetTextJustification
CreateMetaFileA
CreatePen
GetStockObject
GetObjectA
CreateSolidBrush
SelectObject
Rectangle
DeleteObject
SetBkMode
SetDIBitsToDevice

advapi32

ConvertStringSidToSidA
GetTraceEnableLevel
LookupAccountNameA

shell32

SHGetDesktopFolder
ExtractIconExA

ole32

StgCreateDocfile
CoTaskMemAlloc
CoGetMalloc
CoInitialize
CreateStreamOnHGlobal
CoUninitialize
CoCreateGuid
CoUnmarshalInterface

oleaut32

RegisterTypeLi
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
LoadRegTypeLi
CreateStdDispatch
VariantInit
SysAllocString
LoadTypeLi
UnRegisterTypeLi
VariantTimeToSystemTime

avifil32

AVIStreamInfoA
AVIFileRelease
AVIStreamLength
AVIFileOpenA
AVIFileCreateStreamA
AVIStreamStart

winmm

mmioClose
mmioDescend

crypt32

CertGetNameStringA

comctl32

ImageList_GetDragImage

opengl32

glMatrixMode
glViewport
glOrtho
glLoadIdentity

glu32

gluLookAt

wsnmp32

ord401
ord120
ord400

authz

AuthzAccessCheck

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1d1643020eb0a615503fd440bdd39d2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

avifil32

winmm

crypt32

comctl32

opengl32

glu32

wsnmp32

authz

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 52KB - Virtual size: 48KB

.data Size: 12KB - Virtual size: 18KB

.rsrc Size: 172KB - Virtual size: 170KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 52KB - Virtual size: 48KB

.data
Size: 12KB - Virtual size: 18KB

.rsrc
Size: 172KB - Virtual size: 170KB