ca9892fabbbb662d09596fa785b151f85180b8df6c0585d1355f9be64e42de83

Sharing

Copy URL

Twitter E-mail

General

Target

ca9892fabbbb662d09596fa785b151f85180b8df6c0585d1355f9be64e42de83
Size

186KB
MD5

4779147d66108f6c3b5530ca497f87c2
SHA1

4ac3b00f8511f337f12fe2f54b05bf02a0cd9c22
SHA256

ca9892fabbbb662d09596fa785b151f85180b8df6c0585d1355f9be64e42de83
SHA512

7d9498fde9f484a7dbcdcf0024bcd384808ae787b7870de6a55c4a49483b0b06e32852ce3f7b29e882870a883159c9e112b035cd28222b198130fa543f061a1c
SSDEEP

3072:fau5femxEOTjFqCiRYmRLrZogtuW1rZYLLDS40x6DeWvbqqfdofT:ft5x7FLiRT/Zo/o+LeBxxEI

Score

N/A

Malware Config

Signatures

Files

ca9892fabbbb662d09596fa785b151f85180b8df6c0585d1355f9be64e42de83
.exe windows x86

dfc837efbce07c0d36d15fe70347f2b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

CreateDIBSection

user32

GetCapture
FrameRect

kernel32

LoadLibraryA
GetModuleHandleA
lstrlenA
GetCommandLineW
VirtualAlloc
lstrlenW
GetCommandLineA
LocalAlloc
VirtualAllocEx
LoadLibraryExA
IsBadHugeReadPtr
GetLastError
ExitProcess
GetProcAddress

msvcrt

atan

Sections

CODE
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 151KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES5
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES1
Size: 512B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES7
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES3
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES9
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES2
Size: 512B - Virtual size: 250B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfc837efbce07c0d36d15fe70347f2b3

Headers

File Characteristics

Imports

gdi32

user32

kernel32

msvcrt

Sections

CODE Size: 22KB - Virtual size: 21KB

.data Size: 151KB - Virtual size: 151KB

RES0 Size: 2KB - Virtual size: 1KB

RES5 Size: 1KB - Virtual size: 1KB

RES1 Size: 512B - Virtual size: 84KB

RES7 Size: 1024B - Virtual size: 820B

RES3 Size: 1KB - Virtual size: 1KB

RES9 Size: 2KB - Virtual size: 1KB

RES2 Size: 512B - Virtual size: 250B

.rsrc Size: 2KB - Virtual size: 2KB

CODE
Size: 22KB - Virtual size: 21KB

.data
Size: 151KB - Virtual size: 151KB

RES0
Size: 2KB - Virtual size: 1KB

RES5
Size: 1KB - Virtual size: 1KB

RES1
Size: 512B - Virtual size: 84KB

RES7
Size: 1024B - Virtual size: 820B

RES3
Size: 1KB - Virtual size: 1KB

RES9
Size: 2KB - Virtual size: 1KB

RES2
Size: 512B - Virtual size: 250B

.rsrc
Size: 2KB - Virtual size: 2KB