609cc34749da7ce6e8dbb3de9b7d0be03eca4cea63a4f3b1c383a3d483d0ecd6

Sharing

Copy URL

Twitter E-mail

General

Target

609cc34749da7ce6e8dbb3de9b7d0be03eca4cea63a4f3b1c383a3d483d0ecd6
Size

340KB
MD5

f0bd265c4732a39c800c7f36c4f6d5cc
SHA1

664b0bb2e21dd167d3fd5ee6f804b188773f9ded
SHA256

609cc34749da7ce6e8dbb3de9b7d0be03eca4cea63a4f3b1c383a3d483d0ecd6
SHA512

b6f11c19ba6c3030ef54a7ba3ac944a6b172b628e7898decca8766a4b68bfa65919ee9bcf179b1d0babd7ca4bdbaa87ef39268104e81f9da9d4d997bda71d8a3
SSDEEP

6144:fMgF+EogGs1easTX9hkXKaHv0Rv3utej1:EqogGFasTwfP0QW

Score

N/A

Malware Config

Signatures

Files

609cc34749da7ce6e8dbb3de9b7d0be03eca4cea63a4f3b1c383a3d483d0ecd6
.exe windows x86

23ea575e55aacee79008f2b1a5963c80

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadAcceleratorsW
GetMessageW
TranslateMessage
DispatchMessageW
LoadIconW
LoadCursorW
RegisterClassExW
DrawTextW
EndPaint
PostQuitMessage
DefWindowProcW
DialogBoxParamW
PostMessageW
DestroyWindow
EndDialog
LoadBitmapW
SendMessageW
CreateWindowExW
UpdateWindow
ShowWindow
BeginPaint
GetWindowRect
InvalidateRect
SetWindowTextA
SetMenuItemInfoA
LockWindowUpdate
GetWindowPlacement
SetDlgItemTextW
MapWindowPoints
SetMenu
GetCursorPos
EndDeferWindowPos
EnableMenuItem
GetActiveWindow
DrawFocusRect
DrawFrameControl
RegisterClassA
SetWindowLongA
GetWindowTextA
GetWindowLongA
GetClassNameA
ModifyMenuA

kernel32

LCMapStringEx
HeapSize
GetStringTypeW
HeapReAlloc
RtlUnwind
LoadLibraryW
OutputDebugStringW
LoadLibraryExW
IsDebuggerPresent
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
LeaveCriticalSection
EnterCriticalSection
FlushFileBuffers
TerminateProcess
GetCurrentProcess
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
GetStartupInfoA
WriteFile
MapViewOfFile
CloseHandle
GetFileSize
CreateFileMappingA
CreateFileA
GetModuleHandleW
HeapFree
GetCurrentDirectoryW
HeapAlloc
Sleep
GetLastError
GetCommandLineW
lstrlenW
GetProcessHeap
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
IsProcessorFeaturePresent
GetCommandLineA
FreeEnvironmentStringsW
GetEnvironmentStringsW
CreateFileW
SetLastError
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
GetStdHandle
GetModuleFileNameW
GetFileType
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
InitOnceExecuteOnce
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTickCount64

gdi32

CreateCompatibleBitmap
BitBlt
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC

shell32

CommandLineToArgvW

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ndata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23ea575e55aacee79008f2b1a5963c80

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

shell32

Sections

.text Size: 120KB - Virtual size: 118KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 16KB - Virtual size: 23KB

ndata Size: 12KB - Virtual size: 8KB

.rsrc Size: 156KB - Virtual size: 152KB

.text
Size: 120KB - Virtual size: 118KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 16KB - Virtual size: 23KB

ndata
Size: 12KB - Virtual size: 8KB

.rsrc
Size: 156KB - Virtual size: 152KB