883f7f16dc1bc70e4b8862d297843f81f8c9f82a3b9cc7f93eadc6fd4b881f90

Sharing

Copy URL Twitter E-mail

General

Target

883f7f16dc1bc70e4b8862d297843f81f8c9f82a3b9cc7f93eadc6fd4b881f90
Size

481KB
MD5

87a8d51d27091e68114bd629afac0266
SHA1

c807a17bafc4be0c9a17036e670fee60b1bc1901
SHA256

883f7f16dc1bc70e4b8862d297843f81f8c9f82a3b9cc7f93eadc6fd4b881f90
SHA512

88a595a29e246d209cf91032c6c85917339aadc7f980f257c7709cf7c5fd2ee2bb1637d54a11abc78c41e4f8898a0673245d7f5174e70d6046bb2c1340c04a38
SSDEEP

6144:iNdb78Li6oGTYyXGIkiQYzdGN8hi0QuczRTW9O/j3FcMeagbVXsPmv9:WGLiZy2dhYzY479O/j8COv9

Score

N/A

Malware Config

Signatures

Files

883f7f16dc1bc70e4b8862d297843f81f8c9f82a3b9cc7f93eadc6fd4b881f90
.exe windows x86

524594ca0f9086410c157dc0a368a623

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassA
DdeClientTransaction
DdeQueryConvInfo
RegisterClassExA
MessageBoxExW
UnregisterHotKey
GetInputState
CopyAcceleratorTableW
GetGuiResources
CreateWindowStationW
MapVirtualKeyExW
GetMenuStringA
OpenWindowStationA
InvalidateRect
MessageBoxW

kernel32

ExpandEnvironmentStringsA
UnhandledExceptionFilter
QueryPerformanceCounter
WriteFile
GetExitCodeThread
TlsFree
TlsGetValue
LCMapStringA
GetTimeZoneInformation
FindAtomW
HeapFree
GlobalAddAtomW
FreeResource
GetLocalTime
SleepEx
RemoveDirectoryW
SetLastError
VirtualAlloc
GetSystemTime
InterlockedDecrement
EnterCriticalSection
GetStartupInfoA
GetProcAddress
GetComputerNameA
GetCurrentThread
LeaveCriticalSection
GetPriorityClass
GetStringTypeW
LoadLibraryA
ReadFile
OpenMutexA
GetEnvironmentStringsW
GetCommandLineA
GetFileAttributesW
HeapAlloc
CompareStringA
GetCurrentThreadId
DeleteCriticalSection
FlushConsoleInputBuffer
FreeEnvironmentStringsA
HeapDestroy
SetFilePointer
CompareStringW
LCMapStringW
VirtualQuery
GetModuleFileNameA
SetHandleCount
GetModuleHandleA
GetCPInfo
lstrcpynA
FlushFileBuffers
LocalFlags
TlsSetValue
GetPrivateProfileSectionW
GetStringTypeA
TryEnterCriticalSection
CreateMutexA
ExitThread
GetEnvironmentStrings
RtlUnwind
GetStdHandle
TlsAlloc
GetVersion
HeapReAlloc
DebugActiveProcess
VirtualQueryEx
InitializeCriticalSection
InterlockedIncrement
GetCurrentProcess
VirtualFree
GetFileType
ExitProcess
GetACP
IsBadWritePtr
FreeEnvironmentStringsW
lstrcpy
CloseHandle
GetOEMCP
SetThreadContext
WideCharToMultiByte
UnlockFile
TerminateProcess
SetStdHandle
SetEnvironmentVariableW
InterlockedExchange
IsDebuggerPresent
GetLastError
GetCurrentProcessId
GetTickCount
SetEnvironmentVariableA
MultiByteToWideChar
GetSystemTimeAsFileTime
HeapCreate

comctl32

InitCommonControlsEx

Sections

.text
Size: 343KB - Virtual size: 342KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

524594ca0f9086410c157dc0a368a623

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 343KB - Virtual size: 342KB

.rdata Size: 23KB - Virtual size: 47KB

.data Size: 104KB - Virtual size: 103KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 343KB - Virtual size: 342KB

.rdata
Size: 23KB - Virtual size: 47KB

.data
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 10KB - Virtual size: 9KB