46931155a427d71e4f93e08f8c263659ef6364b6207672d6d412cd0d1c05894e

Sharing

Copy URL

Twitter E-mail

General

Target

46931155a427d71e4f93e08f8c263659ef6364b6207672d6d412cd0d1c05894e
Size

645KB
MD5

aba2bc26eaf4cda5216ad5706fe4c7da
SHA1

e50f8336bd82b31ba1dec310215b8815a5ea998d
SHA256

46931155a427d71e4f93e08f8c263659ef6364b6207672d6d412cd0d1c05894e
SHA512

4654becebcd41e2884b7121f45942740986e443bdacb54a16ac241a5b070d41d4de43444a11c353fddbd0728194e48ca947cbf7c55fc77052b3035487aa205ca
SSDEEP

12288:3huzTPniotKGJrjOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOu:3AvPndtKgOOOOOOOOOOOOOOOOOOOOOOh

Score

N/A

Malware Config

Signatures

Files

46931155a427d71e4f93e08f8c263659ef6364b6207672d6d412cd0d1c05894e
.exe windows x86

1c74e76003a75964ae50479c0392bf23

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSettings
SHGetDataFromIDListA
ShellHookProc
ShellAboutA

kernel32

ExitProcess
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
OpenMutexA
GetSystemDirectoryA
OpenSemaphoreA
EnumSystemLocalesA
OpenFile
CompareFileTime
Process32First
LoadLibraryA
FreeLibrary
CompareStringA
InterlockedExchange
GetModuleHandleA
SetLastError
FlushFileBuffers
GetUserDefaultLCID
IsValidLocale
HeapSize
HeapReAlloc
HeapAlloc
RtlUnwind
SetConsoleCtrlHandler
IsDebuggerPresent
GetOEMCP
GetACP
HeapFree
FatalAppExitA
LeaveCriticalSection
EnterCriticalSection
GetTickCount
TlsFree
TlsSetValue
TlsGetValue
GetCommandLineA
GetLastError
GetCurrentThread
GetCurrentThreadId
EncodePointer
DecodePointer
CloseHandle
GetModuleHandleExW
AreFileApisANSI
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetModuleFileNameA
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc

user32

IsRectEmpty
DdeAccessData
SetWindowPlacement
TrackMouseEvent
DrawEdge
FillRect
DrawFrameControl
GetDialogBaseUnits

ole32

OleMetafilePictFromIconAndLabel
HkOleRegisterObject
OleGetIconOfClass
StgGetIFillLockBytesOnILockBytes
STGMEDIUM_UserFree
OleIsRunning
OleSetAutoConvert
CreateFileMoniker
HMENU_UserFree

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 464KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c74e76003a75964ae50479c0392bf23

Headers

DLL Characteristics

File Characteristics

Imports

shell32

kernel32

user32

ole32

Sections

.text Size: 106KB - Virtual size: 106KB

.rdata Size: 35KB - Virtual size: 34KB

.data Size: 30KB - Virtual size: 38KB

.rsrc Size: 464KB - Virtual size: 464KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 106KB - Virtual size: 106KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 30KB - Virtual size: 38KB

.rsrc
Size: 464KB - Virtual size: 464KB

.reloc
Size: 8KB - Virtual size: 7KB