35e2bf86f18b3bad7438f72303f83711c02d46bff31e7a004a7a2b95317a781c

General

Target

35e2bf86f18b3bad7438f72303f83711c02d46bff31e7a004a7a2b95317a781c
Size

468KB
MD5

14e3e6fe34a0938f656d40edf6760c12
SHA1

574f2513176f985b36383a6867556c82612ac9a7
SHA256

35e2bf86f18b3bad7438f72303f83711c02d46bff31e7a004a7a2b95317a781c
SHA512

95e49f2c97d1b17f4b289cc386f3c5e065fce84d53b1ce3ddba1bbe117da0b7de3e808e9d3342193519304cea3025826a2a9364c1338674158833712e4ef42c2
SSDEEP

6144:vne/zmgP3w4LoZw+QMkYzACeTyIuojh+wOrWj1k+DaQQDiqNWbtpqxR:vnkqd45qkYzTWyIuoFOajXMDnItwx

Score

N/A

Malware Config

Signatures

Files

35e2bf86f18b3bad7438f72303f83711c02d46bff31e7a004a7a2b95317a781c
.exe windows x86

64a952e4064b0ae435dc32f28cbf7dd9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
GetModuleHandleA
VirtualAlloc
GetProcAddress
VirtualFree
HeapFree
TerminateThread
WaitForSingleObject
GetProcessHeap
OpenMutexA
HeapDestroy
GetLocalTime
VirtualUnlock
GetLastError
OpenSemaphoreA
VirtualQuery
InterlockedExchange
VirtualProtect
GetLocaleInfoA
HeapSize
RtlUnwind
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
LocalReAlloc
VirtualAllocEx
GetStringTypeA
RaiseException
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapCreate
HeapAlloc
HeapReAlloc
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
GetSystemInfo

user32

GetLastActivePopup
FindWindowA
GetWindowInfo
GetWindow
GetSysColorBrush
LoadIconA
GetDesktopWindow

gdi32

PatBlt

winmm

joySetCapture

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 396KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 217KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64a952e4064b0ae435dc32f28cbf7dd9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 396KB - Virtual size: 392KB

.data Size: 24KB - Virtual size: 217KB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 396KB - Virtual size: 392KB

.data
Size: 24KB - Virtual size: 217KB

.rsrc
Size: 16KB - Virtual size: 13KB