d47c81fd482ebf698c9e86b31d1ff98c8a8c86b9d5e17581ea21161595af8158

Sharing

Copy URL Twitter E-mail

General

Target

d47c81fd482ebf698c9e86b31d1ff98c8a8c86b9d5e17581ea21161595af8158
Size

588KB
MD5

b00b96bc9a17372f31073dc9745fb0c7
SHA1

e04c4331756558cbdfc71de379c19f8fc6926d9f
SHA256

d47c81fd482ebf698c9e86b31d1ff98c8a8c86b9d5e17581ea21161595af8158
SHA512

10da8a56645e6527a3573a23a0337dd174b4a5e314cb77d6580a084c74a73302f76fb590dafc203e3e010272837d141cb762cd1956a813e8cb6bd0558715be5e
SSDEEP

12288:opNIfewbOWZuuMsdQAH3iehTrspNlOY+Hsxqpg9HtdVplyMVz4:ofhwbOWZuuMsdQAHdZspNcMzfVplyO

Score

N/A

Malware Config

Signatures

Files

d47c81fd482ebf698c9e86b31d1ff98c8a8c86b9d5e17581ea21161595af8158
.exe windows x86

164e226b14695481fc243fcf64161d97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PtInRect
RegisterClassA
SetWindowWord
FindWindowExA
CharUpperW
DestroyCursor
RegisterClassExA
GetMessageW
DestroyAcceleratorTable
DdeFreeDataHandle
GetWindowModuleFileNameW

comctl32

InitCommonControlsEx

kernel32

IsValidLocale
LCMapStringW
HeapCreate
GetStdHandle
ReadFile
LeaveCriticalSection
MultiByteToWideChar
TlsSetValue
GetCurrentThreadId
HeapAlloc
IsBadWritePtr
GetCurrentProcess
InterlockedDecrement
GetStringTypeA
TerminateProcess
GetLocaleInfoA
GetModuleFileNameW
UnhandledExceptionFilter
DeleteFileA
TlsFree
GetModuleFileNameA
GetStartupInfoW
GetEnvironmentStringsW
HeapReAlloc
TlsAlloc
GetDateFormatA
VirtualProtect
GetSystemTimeAsFileTime
GetLastError
DeleteCriticalSection
OpenMutexA
GetCurrentProcessId
HeapDestroy
GetModuleHandleA
GetTimeZoneInformation
GetLocaleInfoW
ReadConsoleOutputW
GetProcAddress
VirtualQuery
CloseHandle
WriteFile
GetOEMCP
CompareStringW
GetVersionExA
SetFilePointer
IsValidCodePage
GetCurrentThread
GetStringTypeW
WideCharToMultiByte
GetCommandLineA
LoadLibraryA
HeapSize
SetEnvironmentVariableA
RtlUnwind
HeapFree
WriteConsoleInputW
GetACP
GetEnvironmentStrings
GetCalendarInfoA
CreateMutexA
GetFileType
WriteConsoleW
VirtualFree
LCMapStringA
InitializeCriticalSection
TlsGetValue
SetLastError
EnumSystemLocalesA
VirtualAlloc
GetSystemInfo
GetTimeFormatA
GetUserDefaultLCID
FreeEnvironmentStringsA
ExitProcess
QueryPerformanceCounter
GetTickCount
SetStdHandle
FreeEnvironmentStringsW
GetCommandLineW
GetStartupInfoA
GetCPInfo
EnterCriticalSection
SystemTimeToFileTime
FlushFileBuffers
SetHandleCount
InterlockedExchange
ConnectNamedPipe
CompareStringA

Sections

.text
Size: 218KB - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 358KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

164e226b14695481fc243fcf64161d97

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 218KB - Virtual size: 218KB

.rdata Size: 7KB - Virtual size: 31KB

.data Size: 358KB - Virtual size: 358KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 218KB - Virtual size: 218KB

.rdata
Size: 7KB - Virtual size: 31KB

.data
Size: 358KB - Virtual size: 358KB

.rsrc
Size: 3KB - Virtual size: 2KB