c2e5aeb33d6a4d197dd1bf3381463c1c2b43826c0ad14200edf4b98f8f6bc40d

Sharing

Copy URL

Twitter E-mail

General

Target

c2e5aeb33d6a4d197dd1bf3381463c1c2b43826c0ad14200edf4b98f8f6bc40d
Size

756KB
MD5

abe779482d3e8d51381ca04cd84d2cd4
SHA1

2751f1b89bdb639e0e00e44b8ebc6b7ff3744817
SHA256

c2e5aeb33d6a4d197dd1bf3381463c1c2b43826c0ad14200edf4b98f8f6bc40d
SHA512

fa8eea2f63d37db30b35bc8a5a731b0120c5b4e676dd8ccd02f3b3c3b729d6fe396950c736b5fe75c735e46fd4c3191db73181917c14a7d24b8ad1d44e39a4a0
SSDEEP

12288:mUnF1U+j4fr+pGGvb8hyEEvTTkPdVL8tkAcUWf8ZDPunL0:mQA8mrIN88W6cZf8ZD0

Score

N/A

Malware Config

Signatures

Files

c2e5aeb33d6a4d197dd1bf3381463c1c2b43826c0ad14200edf4b98f8f6bc40d
.exe windows x86

41e110fa19bd42eb49144a7f2b61f88b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalUnlock
WriteFile
GetLocalTime
GetModuleFileNameA
GetCurrentThreadId
LockResource
SizeofResource
LoadResource
FindResourceA
ReleaseMutex
CreateMutexA
GetLastError
GetPrivateProfileStructA
WritePrivateProfileStructA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
CreateFileA
QueryPerformanceFrequency
FileTimeToSystemTime
GetFileInformationByHandle
FileTimeToLocalFileTime
ResetEvent
CloseHandle
CreateEventA
GlobalLock
GlobalAlloc
CreateThread
GetFileType
SetEndOfFile
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
SetUnhandledExceptionFilter
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
WaitForSingleObject
GetStdHandle
SetHandleCount
ReadFile
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
HeapSize
HeapReAlloc
GetCurrentProcess
DeleteFileA
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
SetEvent
GetStartupInfoA
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
RaiseException
RtlUnwind
HeapAlloc
HeapFree
LeaveCriticalSection
DeleteCriticalSection
InterlockedExchange
InitializeCriticalSection
EnterCriticalSection
GetTempPathA
GetProcAddress
LoadLibraryA
FreeLibrary
CreateDirectoryA
Sleep
SetThreadPriority

user32

wsprintfA
ScreenToClient
SetWindowsHookExA
TranslateMessage
DispatchMessageA
GetMessageA
SetTimer
KillTimer
DefWindowProcA
GetDlgItemTextA
GetParent
InvalidateRect
SendDlgItemMessageA
LoadIconA
EndDialog
LoadStringA
SetDlgItemTextA
DialogBoxParamA
SetWindowLongA
GetWindowLongA
CreateDialogParamA
DestroyWindow
DestroyMenu
GetWindowRect
IsDlgButtonChecked
SendMessageA
GetDlgItem
GetSubMenu
LoadMenuA
EnableWindow
GetSystemMetrics
GetClientRect
CheckDlgButton
SetWindowPos
PostMessageA
ShowWindow
TrackPopupMenu
CallNextHookEx
UnhookWindowsHookEx
GetWindowTextA
IsDialogMessageA
FindWindowA
UpdateWindow
SetWindowTextA
GetMenuItemCount
GetMenuItemID
DeleteMenu
InsertMenuA
EnableMenuItem
GetMenuStringA
ModifyMenuA
SetWindowPlacement
SetForegroundWindow
RedrawWindow
GetMenuState
SetCursor
GetWindowPlacement
BeginPaint
EndPaint
LoadCursorA
RegisterClassExA
DrawMenuBar
PostQuitMessage
SetMenu
GetMenu
CheckMenuItem
IsWindow
ClientToScreen
CreateWindowExA
GetCursorPos
GetDC
SetRect
MessageBoxA
ReleaseDC

gdi32

ExtTextOutA
RealizePalette
CreatePalette
GetSystemPaletteEntries
SetBkColor
SelectPalette
TextOutA
DeleteObject
SelectObject
CreateFontIndirectA
SetTextColor
AnimatePalette
StretchDIBits
SetBkMode
BitBlt
CreateCompatibleBitmap
DeleteDC
GetDIBits
GetStockObject
CreateCompatibleDC
GetDeviceCaps
CreateDCA
GetObjectA

comdlg32

ChooseFontA
GetSaveFileNameA
GetOpenFileNameA

shell32

DragAcceptFiles
ShellExecuteA

ole32

CoCreateInstance
CoUninitialize
CoInitialize

winmm

timeEndPeriod
timeGetTime
timeBeginPeriod

comctl32

ImageList_LoadImageA
ImageList_Destroy
ord17

imm32

ImmAssociateContext

shlwapi

PathFindExtensionA

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 430KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 404KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

41e110fa19bd42eb49144a7f2b61f88b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

winmm

comctl32

imm32

shlwapi

Sections

.text Size: 232KB - Virtual size: 231KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 40KB - Virtual size: 430KB

.rsrc Size: 404KB - Virtual size: 402KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 232KB - Virtual size: 231KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 40KB - Virtual size: 430KB

.rsrc
Size: 404KB - Virtual size: 402KB

.rmnet
Size: 60KB - Virtual size: 60KB