79e4ecddf4a40132477242b3ce9bf57e9ccf8337aecdb25f06c4a4d8f48bd297

Sharing

Copy URL Twitter E-mail

General

Target

79e4ecddf4a40132477242b3ce9bf57e9ccf8337aecdb25f06c4a4d8f48bd297
Size

336KB
MD5

2bc49a66952bee382dfde47647d13fae
SHA1

e9e6523efa70badc5231a84bbcd69ccb4d1ab767
SHA256

79e4ecddf4a40132477242b3ce9bf57e9ccf8337aecdb25f06c4a4d8f48bd297
SHA512

607ee81395823454d8eb07da8a7002173f4129969057d6f94cb9fb2de0f61b9bdb7ec8ddc54a56c0a214835ea34ff54191f5c2c0ce8393f88f274c6c3d233e1d
SSDEEP

6144:2evqng8sMxqdCAm95WpuOCiGKPSUfB7MU/pJAekKwtHyLI:DvIxgO9r3ijBMYJAeFwxyL

Score

N/A

Malware Config

Signatures

Files

79e4ecddf4a40132477242b3ce9bf57e9ccf8337aecdb25f06c4a4d8f48bd297
.exe windows x86

0cc04dad83f7421fa8cd1cd303ecfa8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsFree
GetCurrentThread
InterlockedCompareExchange
Sleep
SetStdHandle
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
HeapReAlloc
LCMapStringA
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
GetLastError
InterlockedIncrement
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateEventW
GetProcAddress
WaitForMultipleObjects
DuplicateHandle
FindNextFileA
CreateFileMappingA
CompareStringA
FindNextFileW
CompareStringW
GetProcessHeap
GlobalLock
GetStartupInfoW
GetWindowsDirectoryA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
GetVersionExW
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
CloseHandle
LeaveCriticalSection
GetCurrentThreadId
GetLocaleInfoA
SetEndOfFile
SetFilePointer
GetVersion
InterlockedDecrement
SetUnhandledExceptionFilter
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
CreateFileA
CreateThread
GetModuleHandleA
CreateMutexA
GetLocalTime
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
InitializeCriticalSection
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
GetEnvironmentVariableA
FormatMessageW
LocalFree
FreeLibrary
SetFileAttributesA
GetStringTypeW
GetDiskFreeSpaceA
GetCommandLineA
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
GetTempPathA
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
WriteConsoleA
GetFileAttributesW
HeapDestroy
FindFirstFileW
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetSystemDefaultLangID
GetSystemDefaultLCID
GetUserDefaultLangID
GetUserDefaultLCID
ReadFile
FindFirstFileA
lstrcpynA
GetACP
GetModuleHandleW
InterlockedExchange
CreateProcessA
HeapCreate
IsValidCodePage
VirtualFree
FindResourceA
VirtualAlloc
VirtualQuery
GetOEMCP

gdi32

SetBkColor
DeleteObject
DeleteDC
GetStockObject
SetTextColor
SelectObject
CreateSolidBrush
BitBlt

advapi32

RegQueryValueExA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyExA

user32

GetWindowRect
GetSystemMetrics
BeginPaint
SetFocus
CreateWindowExA
GetWindowLongA
GetWindow
TranslateMessage
PeekMessageA
CheckMenuItem
GetParent
DestroyWindow
GetKeyState
SendMessageA
ReleaseDC
GetDC
EndPaint
SetWindowPos
PostQuitMessage
GetSubMenu
SetTimer
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
GetDesktopWindow
SetForegroundWindow
SetDlgItemTextA
MessageBoxA
GetSysColor
InvalidateRect
GetClientRect
CallWindowProcA
GetFocus
UpdateWindow
SetCursor

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

msvcrt

_strcmpi
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_controlfp
__dllonexit
_onexit
_except_handler3

Sections

.text
Size: 320KB - Virtual size: 317KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0cc04dad83f7421fa8cd1cd303ecfa8c

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

user32

version

msvcrt

Sections

.text Size: 320KB - Virtual size: 317KB

.data Size: 8KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 320KB - Virtual size: 317KB

.data
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 2KB