c1a0085eb9b9bae020d2de2021e1c4b636f5871e864ad90877887273168a3fe9

Sharing

Copy URL Twitter E-mail

General

Target

c1a0085eb9b9bae020d2de2021e1c4b636f5871e864ad90877887273168a3fe9
Size

9KB
MD5

e6c9f117550f15d94637bdea1d69cbde
SHA1

177b7b212e6ccf1e9b3dd251f96c2db98b95445a
SHA256

c1a0085eb9b9bae020d2de2021e1c4b636f5871e864ad90877887273168a3fe9
SHA512

f26c67b492a32e5c1a75932012f184561e9270207372b3b367d6f291e24d7513c36249292b3e14a9ccd4a11357b8ce431bfed5c9b36cc3a6f5f7e37040bc75a9
SSDEEP

192:E8l4/ciermiSoA9lWwPoYl/5KHNT/nAP5ZIC5a:Pl4QfSDlVLapPYZP5a

Score

N/A

Malware Config

Signatures

Files

c1a0085eb9b9bae020d2de2021e1c4b636f5871e864ad90877887273168a3fe9
.exe windows x86

1d321ac777296a8e49dfab06981080b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
GetLastError
FindFirstFileA
CreateFileW
GetFullPathNameW
SizeofResource
RaiseException
DeviceIoControl
GetCurrentProcessId
GetCurrentProcess
FindResourceExW
InterlockedExchange
ExitProcess
WriteFile
GlobalLock
GetModuleHandleA
FreeEnvironmentStringsW
QueryPerformanceCounter
lstrcmpiA
GetEnvironmentStrings
SetFileAttributesW
CreateFileMappingW
SetFilePointer
GetLocaleInfoA
LoadLibraryA
GetFileAttributesA
GetOEMCP
FindFirstFileW
GetModuleFileNameA
SetEvent
FindResourceW
GetCurrentThreadId
GetTimeFormatW
SetFileTime
GetCommandLineA
RtlUnwind
GetACP
SetStdHandle
LeaveCriticalSection
VirtualProtect
HeapDestroy
HeapReAlloc
FreeEnvironmentStringsA
GetFileTime
SystemTimeToFileTime
TlsFree
GetStartupInfoA
VirtualAlloc
GetUserDefaultLCID
ExpandEnvironmentStringsW
DuplicateHandle
GetDateFormatW
GetEnvironmentStringsW
HeapAlloc
TerminateProcess
RemoveDirectoryW
CloseHandle
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
CreateProcessW
SetConsoleCP
GetCPInfo
LCMapStringW

user32

GetWindowTextLengthW
SendMessageA
GetWindowTextW
LoadBitmapA
IsDialogMessageA
MsgWaitForMultipleObjects
EnumThreadWindows
GetWindowLongA
PostQuitMessage
DeleteMenu
GetCursorPos
GetClientRect
PeekMessageA
RegisterClassW
GetPropW
SetWindowLongW
LoadIconA
SetWindowTextA
EnumWindows
ReleaseDC
IsWindow
DrawFocusRect
InvalidateRect
GetSysColorBrush
LoadCursorW
TranslateMessage

ole32

CoCreateInstance
OleUninitialize

msvcrt

wcsrchr
memcpy
_exit
realloc
_vsnprintf
_adjust_fdiv
__wgetmainargs
_initterm
memset
_purecall
_onexit
exit
strncmp

gdi32

StretchBlt
GetDeviceCaps
SetBkMode
Rectangle
CreateCompatibleDC
GetTextMetricsA
CreateSolidBrush
Escape

advapi32

RegQueryValueExA
RegQueryInfoKeyA
RegCreateKeyExA
RegOpenKeyExW
RegEnumKeyExA

rpcrt4

RpcStringFreeW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1d321ac777296a8e49dfab06981080b0

Headers

File Characteristics

Imports

kernel32

user32

ole32

msvcrt

gdi32

advapi32

rpcrt4

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 2KB