94279a8720201db3df8fa1d4e15c661032ec5d7c656004ad0c97b795d7a3e2d4

Sharing

Copy URL Twitter E-mail

General

Target

94279a8720201db3df8fa1d4e15c661032ec5d7c656004ad0c97b795d7a3e2d4
Size

266KB
MD5

9252d1d2c5234b1a5b1b00497ea9c57a
SHA1

932454921c9f1291a43ec69a47efe20bcee2bf20
SHA256

94279a8720201db3df8fa1d4e15c661032ec5d7c656004ad0c97b795d7a3e2d4
SHA512

85307e0f6b803e26614c313b3f494d224582b733718832f40cd00d1c021b019a932be1e3a3e6b20319e36604f4c484d21a322772dbf916bfee1bba9356f4d194
SSDEEP

6144:wJeAh+z0y6kN6f1ZJ5fUe32PyJmx9hJPxhq4ViSJ1:4eBDNSdkIU9i6z1

Score

N/A

Malware Config

Signatures

Files

94279a8720201db3df8fa1d4e15c661032ec5d7c656004ad0c97b795d7a3e2d4
.exe windows x86

c51ba8b2a9f0f83b508e92b284cbc82c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
InterlockedDecrement
HeapDestroy
GetVersionExW
GetTimeZoneInformation
EnumSystemLocalesA
HeapAlloc
LoadLibraryA
GetACP
Sleep
CompareStringA
ExpandEnvironmentStringsW
EnterCriticalSection
GetEnvironmentStrings
WideCharToMultiByte
WriteFile
GetCurrentThread
HeapCreate
HeapSize
CompareStringW
TlsSetValue
GetLocaleInfoA
InitializeCriticalSection
GetLocaleInfoW
CreateFileW
IsValidCodePage
GetStringTypeW
GetVersionExA
GetProcAddress
FreeEnvironmentStringsW
GetUserDefaultLCID
HeapFree
VirtualFree
GetLastError
EnumCalendarInfoExA
IsValidLocale
VirtualQuery
SetUnhandledExceptionFilter
LCMapStringA
TlsFree
GetDateFormatA
LCMapStringW
FreeLibrary
GetTimeFormatA
HeapReAlloc
SetLastError
ExitProcess
FreeEnvironmentStringsA
DeleteCriticalSection
VirtualAlloc
TerminateProcess
QueryPerformanceCounter
GetCurrentProcess
SetConsoleCtrlHandler
GetModuleHandleA
GetStdHandle
LeaveCriticalSection
MultiByteToWideChar
GetCurrentThreadId
TlsGetValue
InterlockedIncrement
GetFileType
GetStringTypeA
GetCurrentProcessId
GetModuleFileNameA
SetEnvironmentVariableA
GetEnvironmentStringsW
GetOEMCP
GetTickCount
IsDebuggerPresent
GetCPInfo
GetStartupInfoA
UnhandledExceptionFilter
TlsAlloc
RtlUnwind
GetProcessHeap
GetSystemTimeAsFileTime
InterlockedExchange
SetHandleCount

shell32

ExtractIconEx
DragFinish
DragAcceptFiles
SHAddToRecentDocs
ExtractIconA
SHFileOperationA
SHGetSpecialFolderPathA
SHQueryRecycleBinW
SHGetDataFromIDListA
SHGetSpecialFolderLocation
InternalExtractIconListA
SHGetDataFromIDListW
SHGetFileInfo

wininet

FtpOpenFileW

comdlg32

ChooseColorW
FindTextW
PageSetupDlgA
PrintDlgW
ChooseFontW
LoadAlterBitmap
PrintDlgA
GetSaveFileNameA
ReplaceTextW
ChooseColorA
ChooseFontA
GetFileTitleW
GetSaveFileNameW
FindTextA
GetOpenFileNameA

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 139KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c51ba8b2a9f0f83b508e92b284cbc82c

Headers

File Characteristics

Imports

kernel32

shell32

wininet

comdlg32

Sections

.text Size: 118KB - Virtual size: 118KB

.data Size: 139KB - Virtual size: 159KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 118KB - Virtual size: 118KB

.data
Size: 139KB - Virtual size: 159KB

.rsrc
Size: 8KB - Virtual size: 7KB