77e0dceac56042aa67ad52cc2f20a7e1849ae57165c944e8c2d8c366a0a0add4

Sharing

Copy URL

Twitter E-mail

General

Target

77e0dceac56042aa67ad52cc2f20a7e1849ae57165c944e8c2d8c366a0a0add4
Size

441KB
MD5

0eaef27b042c3f7d6d086671532f912d
SHA1

60564ce245b4fed9ab9c3e023dbb2abfe3a11bb8
SHA256

77e0dceac56042aa67ad52cc2f20a7e1849ae57165c944e8c2d8c366a0a0add4
SHA512

fa39a4424b0b6b17b82875641b9388f1e26b4155605ba3ab2f06f287c5acfa804377acb4904d92e31164887f46106728d83cd95d631036b18ce8619dc866c8d3
SSDEEP

12288:cQURk9oWF2Ty5SkMYk0kvQTHdGXA44qGEI8Z6xEfgFQ:w+K4sI8Hg

Score

N/A

Malware Config

Signatures

Files

77e0dceac56042aa67ad52cc2f20a7e1849ae57165c944e8c2d8c366a0a0add4
.exe windows x86

27cbeb44e37f48d3310bca57dc4e435a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
WriteConsoleOutputAttribute
OpenMutexW
InitializeCriticalSectionAndSpinCount
RtlUnwind
SetLastError
GetCalendarInfoA
GetCurrentProcess
HeapDestroy
VirtualAlloc
WriteFile
GetLastError
HeapReAlloc
GetStartupInfoA
FillConsoleOutputAttribute
GetModuleFileNameW
FreeEnvironmentStringsW
InterlockedExchange
GetModuleFileNameA
GetCommandLineW
MultiByteToWideChar
ExitProcess
GetEnvironmentStringsW
LeaveCriticalSection
TlsGetValue
LoadLibraryA
GetTickCount
GetSystemTimeAsFileTime
InitializeCriticalSection
FreeEnvironmentStringsA
VirtualFree
QueryPerformanceCounter
SleepEx
TlsSetValue
IsDebuggerPresent
VirtualQuery
GetCurrentThreadId
EnterCriticalSection
HeapAlloc
GetVersion
HeapFree
WaitCommEvent
TerminateProcess
GetCurrentProcessId
GetACP
TlsAlloc
IsBadWritePtr
IsValidLocale
UnhandledExceptionFilter
DeleteCriticalSection
GetFileType
TlsFree
GetCommandLineA
GetProcAddress
GetStartupInfoW
GetStdHandle
GetConsoleTitleA
GetModuleHandleA
GetProcessHeap
GetEnvironmentStrings
SetHandleCount
CreateThread
HeapCreate
GetStringTypeA
WriteConsoleOutputCharacterW
SetConsoleTextAttribute

shell32

CommandLineToArgvW
ShellExecuteEx
DragQueryPoint
SHEmptyRecycleBinA
SHGetSpecialFolderPathW
SHGetFileInfo
SHGetMalloc
ShellExecuteA
SHGetPathFromIDListA
RealShellExecuteExA
ExtractIconA
SHInvokePrinterCommandW
SheGetDirA
SHAddToRecentDocs

gdi32

GetTextExtentPoint32W
CreateColorSpaceW
GdiPlayDCScript
GetTextAlign
GetROP2
EnumFontFamiliesExW
GdiPlayJournal
SetMapMode
GetDCOrgEx
AddFontResourceW
Chord
GetEnhMetaFileHeader
GetMiterLimit
UpdateICMRegKeyW
EndDoc
EnumEnhMetaFile
GetLogColorSpaceA
Polyline
SetWorldTransform

Sections

.text
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 302KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27cbeb44e37f48d3310bca57dc4e435a

Headers

File Characteristics

Imports

kernel32

shell32

gdi32

Sections

.text Size: 128KB - Virtual size: 128KB

.data Size: 302KB - Virtual size: 302KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 128KB - Virtual size: 128KB

.data
Size: 302KB - Virtual size: 302KB

.rsrc
Size: 9KB - Virtual size: 9KB