cc70749bea656f116a7c21fb937f22dfb5877a864a59e746bad4ceb61a18a6fb

Sharing

Copy URL

Twitter E-mail

General

Target

cc70749bea656f116a7c21fb937f22dfb5877a864a59e746bad4ceb61a18a6fb
Size

149KB
MD5

268d67da93cb8d48eb6890e8eb0b6912
SHA1

fa2b8ca1db32a5100a605f45cfab8dcaf0b64b52
SHA256

cc70749bea656f116a7c21fb937f22dfb5877a864a59e746bad4ceb61a18a6fb
SHA512

282ddeb8b855c3c0095d0964e1c22bb0e77ef92b54b73a5902fb94b65832a8a28f0b62f5fea34e1768ae9ab77a69f4c0fa1f7cb06bb933e7ce653a89487e12a2
SSDEEP

3072:tzaE7ZKrQMh/x8orIrUCic0PglqlsvARnj1N24l55D8ejI1AbWxS/Cau2lPX3LMB:ZaE4rQqlrIQL8Eh24loesObWxS/TzMB

Score

N/A

Malware Config

Signatures

Files

cc70749bea656f116a7c21fb937f22dfb5877a864a59e746bad4ceb61a18a6fb
.exe windows x86

54aaf8dc643114b5c601c5f8d229f3b9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
CloseHandle
LocalFree
CreateThread
CompareStringW
VirtualProtect
HeapSize
LoadLibraryW
RtlUnwind
IsProcessorFeaturePresent
HeapReAlloc
GetStringTypeW
LCMapStringW
GetSystemInfo
RemoveDirectoryW
LocalAlloc
GetDiskFreeSpaceW
GetCurrentDirectoryW
GetModuleFileNameW
GetFileAttributesW
WriteConsoleW
Sleep
ReadFile
MultiByteToWideChar
GetProcessHeap
SetEndOfFile
SetFilePointer
GetConsoleMode
GetConsoleCP
RaiseException
WideCharToMultiByte
GetSystemDirectoryW
CreateProcessW
GetEnvironmentVariableW
ExitProcess
GetTimeFormatA
GetDateFormatA
GetLastError
GetCommandLineW
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetFileType
CreateFileA
CreateFileW
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
InterlockedIncrement
GetModuleHandleW
SetLastError
InterlockedDecrement
GetProcAddress
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapFree
GetTimeZoneInformation
HeapAlloc
SetStdHandle
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
SetHandleCount
GetStdHandle
DeleteCriticalSection
WriteFile
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetEnvironmentVariableA

user32

GetClassInfoExW
CallWindowProcW
ReleaseCapture
GetCursorPos
EndDialog
GetWindowTextLengthW
CloseClipboard
GetMessageW
GetFocus
GetAncestor
SetFocus
RegisterClassExW
LoadIconW
OffsetRect
GetWindowLongW
AppendMenuW

comctl32

ord17
ImageList_DragLeave
_TrackMouseEvent

comdlg32

GetOpenFileNameW
ReplaceTextW
GetSaveFileNameW
GetFileTitleW

ole32

CoCreateInstance
CoUninitialize
CoInitialize
CoTaskMemFree
CoTaskMemAlloc

shlwapi

PathSkipRootW

avifil32

AVIStreamRelease
AVIFileInit
AVIStreamEndStreaming
AVIMakeFileFromStreams
AVIFileExit

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 610KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54aaf8dc643114b5c601c5f8d229f3b9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comctl32

comdlg32

ole32

shlwapi

avifil32

Sections

.text Size: 115KB - Virtual size: 114KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 4KB - Virtual size: 610KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 115KB - Virtual size: 114KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 4KB - Virtual size: 610KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 7KB