90cd4278cebe77cb3be18a0ba2e342c2ee6fdf00ad6271c7f78046860829bf33

Sharing

Copy URL Twitter E-mail

General

Target

90cd4278cebe77cb3be18a0ba2e342c2ee6fdf00ad6271c7f78046860829bf33
Size

520KB
MD5

2ec19da66cb8bac94b93611840342515
SHA1

547ec97917dfb2b338a952b6ba93e02760fe3127
SHA256

90cd4278cebe77cb3be18a0ba2e342c2ee6fdf00ad6271c7f78046860829bf33
SHA512

02325defeb0f566a3a36639a6f8eeb82292927ddc7cdbe4fa223c0665ce9b5684c3bbafcbe7927e89985565f1dfc2dde9a40a75b2c39a6f3a8cc363e8a8f6fe5
SSDEEP

12288:Y9Vu5V8CSaRkfarQGvxBjKd1Xf9mpdwj01:9V8CSaOaMGvwP9mz1

Score

N/A

Malware Config

Signatures

Files

90cd4278cebe77cb3be18a0ba2e342c2ee6fdf00ad6271c7f78046860829bf33
.exe windows x86

24bcbb1ea923b67c5569e408088ce0fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
HeapLock
GetStringTypeA
IsBadWritePtr
HeapAlloc
GetLocaleInfoW
LeaveCriticalSection
GetVersionExA
GetModuleFileNameA
GetFileType
GetSystemTimeAsFileTime
GetTickCount
lstrcpyA
GetCommandLineW
CompareStringW
ReadFile
CloseHandle
UnhandledExceptionFilter
TlsGetValue
WriteConsoleOutputW
TlsFree
RtlUnwind
VirtualAlloc
GetCurrentThread
GetStdHandle
OpenMutexA
GetUserDefaultLCID
GetCommandLineA
GetTimeZoneInformation
GetEnvironmentStringsW
SetFilePointer
GetTimeFormatA
LoadLibraryA
GetCPInfo
GetStringTypeW
OpenWaitableTimerW
CreateNamedPipeW
GetSystemInfo
GetModuleFileNameW
WideCharToMultiByte
ExitProcess
GetModuleHandleA
IsValidCodePage
GetACP
SetLastError
FreeEnvironmentStringsA
TlsAlloc
GetStartupInfoW
EnterCriticalSection
InitializeCriticalSection
HeapSize
SetStdHandle
GetLastError
HeapFree
GetEnvironmentStrings
VirtualProtect
LCMapStringA
IsValidLocale
VirtualFree
GetDateFormatA
SetEnvironmentVariableA
FlushFileBuffers
LCMapStringW
MultiByteToWideChar
InterlockedExchange
WriteFile
CompareStringA
DeleteCriticalSection
GetProcAddress
VirtualQuery
FreeEnvironmentStringsW
EnumSystemLocalesA
GetStartupInfoA
QueryPerformanceCounter
GetCurrentThreadId
CreateMutexA
HeapDestroy
HeapCreate
GetCurrentProcessId
HeapReAlloc
GetOEMCP
GetLocaleInfoA
TlsSetValue
TerminateProcess
GetCurrentProcess

comctl32

InitCommonControlsEx

user32

TrackPopupMenu
RegisterClassA
GetDialogBaseUnits
MsgWaitForMultipleObjectsEx
SetProcessWindowStation
SetRectEmpty
DdeImpersonateClient
CharPrevExA
CheckMenuRadioItem
IsChild
RegisterClassExA

Sections

.text
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24bcbb1ea923b67c5569e408088ce0fc

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 191KB - Virtual size: 190KB

.rdata Size: 7KB - Virtual size: 19KB

.data Size: 318KB - Virtual size: 318KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 191KB - Virtual size: 190KB

.rdata
Size: 7KB - Virtual size: 19KB

.data
Size: 318KB - Virtual size: 318KB

.rsrc
Size: 2KB - Virtual size: 2KB