462f6a7560ef2a1a815febebf60b1fcb472a8227d6db05ac09e5266b774c3722

Sharing

Copy URL

Twitter E-mail

General

Target

462f6a7560ef2a1a815febebf60b1fcb472a8227d6db05ac09e5266b774c3722
Size

134KB
MD5

24ba99e7fffa82660f61fcdfc941caa4
SHA1

f370c5d65301015f2af35d91d1b3dabab81f8765
SHA256

462f6a7560ef2a1a815febebf60b1fcb472a8227d6db05ac09e5266b774c3722
SHA512

5c1074465312b21145ff3f7b6145d0b002fc8beb550420a29fc906176bea2a7862c706c9a00532c1a83afc9f53947abce09e12f8908d0fc7c44526994de4ea44
SSDEEP

3072:E6XOQtf+7x1L9BX54j+NtOmApPCjAiAOmMR:POQtf+7xLwAgPCjoOmg

Score

N/A

Malware Config

Signatures

Files

462f6a7560ef2a1a815febebf60b1fcb472a8227d6db05ac09e5266b774c3722
.exe windows x86

9cf0426ed7857f3b1c9dac946d1da3b5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
LoadLibraryW
GetNativeSystemInfo
GetCPInfo
FillConsoleOutputCharacterW
GetLastError
GetTickCount
FindFirstChangeNotificationW
HeapReAlloc
GetStringTypeW
MultiByteToWideChar
LCMapStringW
HeapSize
GetProcAddress
Sleep
IsValidCodePage
GetOEMCP
GetACP
RaiseException
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
UnhandledExceptionFilter
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
CloseHandle
ExitThread
FindAtomA
EnumTimeFormatsA
FindAtomW
FreeEnvironmentStringsW
SetLastError
WideCharToMultiByte
GlobalFree
GetCurrentProcessId
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
HeapAlloc
RtlUnwind
GetCommandLineW
HeapSetInformation
GetStartupInfoW
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
HeapCreate
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
IsProcessorFeaturePresent
HeapFree
SetUnhandledExceptionFilter
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount

user32

PeekMessageW
GetRawInputDeviceInfoA
LoadAcceleratorsW
PrivateExtractIconsA
LoadCursorW
LoadCursorFromFileW
LoadIconA
LoadKeyboardLayoutW
UpdateWindow
LoadBitmapW
LookupIconIdFromDirectoryEx
CreateIconFromResource
MapVirtualKeyW
MapVirtualKeyExA
MapWindowPoints
CloseClipboard
OpenClipboard
DefDlgProcW
GetDlgCtrlID
RealGetWindowClassW
GetCaretPos
GetDesktopWindow
SetParent
GetMenu
CreateWindowExW

gdi32

FillPath
StretchDIBits

advapi32

ClearEventLogA
BackupEventLogA
CloseServiceHandle
AddAccessAllowedAce
ChangeServiceConfigA

shell32

ShellExecuteA

msimg32

AlphaBlend

Exports

Exports

_MyFunc1@4

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9cf0426ed7857f3b1c9dac946d1da3b5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

msimg32

Exports

Exports

Sections

.text Size: 95KB - Virtual size: 94KB

.data Size: 4KB - Virtual size: 160KB

.rsrc Size: 29KB - Virtual size: 28KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 95KB - Virtual size: 94KB

.data
Size: 4KB - Virtual size: 160KB

.rsrc
Size: 29KB - Virtual size: 28KB

.reloc
Size: 5KB - Virtual size: 4KB