29be990e0e2631aba443ea4e2775a2b01aae7aab62d09412f3909d8fbe006f55

Sharing

Copy URL Twitter E-mail

General

Target

29be990e0e2631aba443ea4e2775a2b01aae7aab62d09412f3909d8fbe006f55
Size

644KB
MD5

a81034a2246849bf54fe8d033f78c0ca
SHA1

4beb33d75007406de6ec384ca9b707c9ea2a6e55
SHA256

29be990e0e2631aba443ea4e2775a2b01aae7aab62d09412f3909d8fbe006f55
SHA512

9396fc6e0422c6ea3715cce19862f407e311403550f7d41c156597868a164f2332862272c03695394f61e194bb09d40328391cf81f4103e8f9f91b1e4766c0d2
SSDEEP

12288:RXdUjFcqLXR0bZZ9PlMvXmdZT8US80bApD0qIcrV:RNqc3ZPlOm8UL0bApDlIQV

Score

N/A

Malware Config

Signatures

Files

29be990e0e2631aba443ea4e2775a2b01aae7aab62d09412f3909d8fbe006f55
.exe windows x86

f134dc02bddd5a4909e74abeb6ef7d24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetCurrentThread
GetCommandLineA
GetTickCount
GetLastError
GetModuleHandleA
GetCurrentProcessId
GetCurrentThreadId
ExitProcess
VirtualAlloc
GetOEMCP
Sleep
WriteFile
UnmapViewOfFile
InterlockedExchange
GetModuleHandleW
CloseHandle
ReadFile
RaiseException
InterlockedCompareExchange
LockResource
SizeofResource
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GlobalFree
HeapCreate
InterlockedIncrement
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
DuplicateHandle
FindFirstFileW
FindFirstFileA
CompareStringW
GetProcAddress
DeleteFileW
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
LeaveCriticalSection
WriteConsoleA
SetUnhandledExceptionFilter
TerminateProcess
SetEnvironmentVariableA
MulDiv
CreateThread
SetFilePointer
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
SetLastError
OutputDebugStringA
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
LocalFree
FreeLibrary
GetStringTypeW
HeapReAlloc
GetExitCodeProcess
GetSystemTimeAsFileTime
GetStringTypeA
lstrcmpiA
WideCharToMultiByte
SetStdHandle
FreeEnvironmentStringsW
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
HeapDestroy
WaitForSingleObject
GetFileAttributesA
GetStdHandle

user32

IsWindowVisible
SystemParametersInfoA
EndDialog
TrackPopupMenu
ScreenToClient
GetDlgItem
CheckMenuItem
SetWindowTextA
GetWindowRect
GetSystemMetrics
FillRect
CreateWindowExA
GetSubMenu
EnableMenuItem
SetForegroundWindow
LoadStringA
ShowWindow
UpdateWindow
GetParent
DestroyWindow
ClientToScreen
GetClientRect
SendMessageA
UnregisterClassA
GetCursorPos
GetDC
DispatchMessageA
IsWindow
SetWindowPos
PostQuitMessage
MoveWindow

Sections

.text
Size: 596KB - Virtual size: 922KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f134dc02bddd5a4909e74abeb6ef7d24

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 596KB - Virtual size: 922KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 22KB - Virtual size: 22KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 596KB - Virtual size: 922KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 22KB - Virtual size: 22KB

.rsrc
Size: 18KB - Virtual size: 18KB