e528eb990361c2a52c1b5cde8ae8ad64952f77795cb4b52d2a501497577739bb

Sharing

Copy URL Twitter E-mail

General

Target

e528eb990361c2a52c1b5cde8ae8ad64952f77795cb4b52d2a501497577739bb
Size

526KB
MD5

86cf8ed917e67ada2bfe73173df41b40
SHA1

a4e26a2cbc84e6282e1fa05ebd22297bb0a3536f
SHA256

e528eb990361c2a52c1b5cde8ae8ad64952f77795cb4b52d2a501497577739bb
SHA512

123ebb248c9e8d938f800c7ddbc97af6e01c79bd15571f3ecd0012c06894a083c9a95ca4d994e28bfeef01304e244aa1af2c0acc63a2e8505deaf5303b38a399
SSDEEP

6144:Y/4eCIvHT63MAnvt/sZC9TxhRSAe0VdTyzTpTyzobLGLd:Y/vTmt/gC9TN/euyzhyzoH4

Score

N/A

Malware Config

Signatures

Files

e528eb990361c2a52c1b5cde8ae8ad64952f77795cb4b52d2a501497577739bb
.exe windows x86

3351f746e381db3e107285f784c9b545

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
HeapFree
SetLastError
InitializeCriticalSectionEx
HeapSize
MultiByteToWideChar
Sleep
GetLastError
GetFileAttributesA
LoadLibraryA
LockResource
HeapReAlloc
RaiseException
FindResourceExW
LoadResource
FindResourceW
HeapAlloc
DecodePointer
HeapDestroy
GetProcAddress
DeleteCriticalSection
GetProcessHeap
WideCharToMultiByte
CreateDirectoryA
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
SetFilePointerEx
GetStringTypeW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
HeapQueryInformation
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
IsDebuggerPresent
OutputDebugStringW
CloseHandle
SetEvent
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
RtlUnwind
EncodePointer
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapValidate
GetSystemInfo
GetStdHandle
WriteFile
GetFileType
WriteConsoleW
LCMapStringW
MoveFileExW
CreateFileW

user32

DispatchMessageA
LoadCursorA
DestroyWindow
CreateWindowExW
EndDialog
DialogBoxParamA
RegisterClassExW
LoadStringW
ShowWindow
GetMessageA
LoadAcceleratorsA
DefWindowProcA
TranslateMessage
LoadIconA
PostQuitMessage
UpdateWindow
BeginPaint
EndPaint
TranslateAcceleratorA

Sections

.text
Size: 222KB - Virtual size: 221KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.msvcjmc
Size: 512B - Virtual size: 166B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 209KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3351f746e381db3e107285f784c9b545

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 222KB - Virtual size: 221KB

.rdata Size: 67KB - Virtual size: 67KB

.data Size: 3KB - Virtual size: 16KB

.msvcjmc Size: 512B - Virtual size: 166B

.rsrc Size: 209KB - Virtual size: 212KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 222KB - Virtual size: 221KB

.rdata
Size: 67KB - Virtual size: 67KB

.data
Size: 3KB - Virtual size: 16KB

.msvcjmc
Size: 512B - Virtual size: 166B

.rsrc
Size: 209KB - Virtual size: 212KB

.reloc
Size: 10KB - Virtual size: 10KB