3e01af95f9b5b1b939b64241613fd91b2a738f66c5d1173df24e9e74faf1fc5e

Sharing

Copy URL

Twitter E-mail

General

Target

3e01af95f9b5b1b939b64241613fd91b2a738f66c5d1173df24e9e74faf1fc5e
Size

96KB
MD5

f109b8ed3b703f7765eb7e1bc6975d29
SHA1

05753b015d84d236e36c3aef40d9d22add05bf72
SHA256

3e01af95f9b5b1b939b64241613fd91b2a738f66c5d1173df24e9e74faf1fc5e
SHA512

580497f012a0045eb678373e53f6aad6709786e3aaf74a558384574edcd7c544152f9197264ba2c60c4d02c4dd8ce4e978291ae7ee9477ffaccb2b162d34dc1a
SSDEEP

1536:O22Sie1VWyc/k7gQz/W11TlahEpvfFjsCREKQONlwmYgO:O22Dkg021x9s07lwd

Score

N/A

Malware Config

Signatures

Files

3e01af95f9b5b1b939b64241613fd91b2a738f66c5d1173df24e9e74faf1fc5e
.exe windows x86

62aaaf892f2ed84f7da3b88008a9821b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

SetFilePointerEx
WriteFile
FindClose
FindFirstFileW
GetTickCount
GetVersionExW
FreeLibrary
GetProcAddress
LoadLibraryW
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
GetFileAttributesW
GetFullPathNameW
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetVolumeInformationW
SetFileTime
GetFileSize
GetFileTime
SetFileAttributesW
FindNextFileW
CopyFileW
ReadFile
LoadResource
FindResourceW
SetVolumeMountPointW
GetVolumeNameForVolumeMountPointW
DefineDosDeviceW
GetLogicalDrives
Sleep
CreateThread
GetCommandLineW
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetStdHandle
GetOEMCP
GetACP
LoadLibraryA
InterlockedExchange
GetCPInfo
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
FlushFileBuffers
GetLogicalDriveStringsW
GetDriveTypeW
CreateFileW
GetLastError
DeviceIoControl
CloseHandle
FormatMessageW
LocalFree
OutputDebugStringW
LockResource
SetFilePointer
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RtlUnwind
HeapFree
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
TerminateProcess
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
VirtualProtect
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter

user32

PostMessageW
EndDialog
GetWindowTextW
GetWindowRect
SystemParametersInfoW
MoveWindow
GetSystemMenu
AppendMenuW
GetDlgItem
SetFocus
SetWindowTextW
EnableWindow
SendMessageW
LoadStringW
MessageBoxW
FindWindowW
SetForegroundWindow
DialogBoxParamW

advapi32

RegCloseKey
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc

ole32

CoInitializeEx
CoUninitialize

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SharedD
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62aaaf892f2ed84f7da3b88008a9821b

Headers

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

shell32

ole32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 14KB

.SharedD Size: 4KB - Virtual size: 4B

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 14KB

.SharedD
Size: 4KB - Virtual size: 4B

.rsrc
Size: 16KB - Virtual size: 12KB