85ddfe4a60173622fa5ed1638cc4e924ea0f68e85a8421e7a3fb8f14fba03d1e

Sharing

Copy URL Twitter E-mail

General

Target

85ddfe4a60173622fa5ed1638cc4e924ea0f68e85a8421e7a3fb8f14fba03d1e
Size

113KB
MD5

00a1287ab44a8c5dbe3c5bcc412a1e52
SHA1

001df702a574b8eda7e4820c4425364b86a5bed1
SHA256

85ddfe4a60173622fa5ed1638cc4e924ea0f68e85a8421e7a3fb8f14fba03d1e
SHA512

500462a2897b3fc210edba54b57811ce37b0356ead3303faa864e9ccbd04b78dcfa5a27b1d6beec6544ba230813e52002b3230ed9a40628e40bb4b0f06b8dc0e
SSDEEP

3072:KUS5TYl2pbCHg64gZoqD7URZ2k6BKgDfVKAn:Kp5TYrX4gi1Ek6ogDf

Score

N/A

Malware Config

Signatures

Files

85ddfe4a60173622fa5ed1638cc4e924ea0f68e85a8421e7a3fb8f14fba03d1e
.exe windows x86

25f08f96a3dd1ea58616e4c273ec41ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
MulDiv
SetLastError
ExitProcess
SetHandleCount
GetFileAttributesA
GetFullPathNameA
GetModuleFileNameW
InterlockedIncrement
VirtualQuery
GetProcAddress
GetModuleHandleA
InterlockedCompareExchange
GetLastError
VirtualFree
lstrcpynA
GetThreadLocale
GetACP
SetUnhandledExceptionFilter
GetCurrentProcessId
GetModuleHandleW
GetStringTypeA
GetUserDefaultLangID
GetCommandLineA
FreeEnvironmentStringsW
LCMapStringW
GetCurrentProcess
CreateProcessA
FlushFileBuffers
lstrcmpiW
InterlockedDecrement
FormatMessageA
FreeEnvironmentStringsA
GetCommandLineW
DeleteFileA
GetModuleFileNameA
RtlUnwind
LoadLibraryW
GetVersion
lstrlenA
DeleteFileW
CopyFileW
QueryPerformanceCounter
GetLocaleInfoA
LocalAlloc
VirtualProtectEx
GlobalFree
GetStringTypeW
GetFileType
lstrlenW
LCMapStringA
GetLocalTime
GetSystemInfo
CompareStringA

msvcrt

__getmainargs
__setusermatherr
__p__commode
__set_app_type
_controlfp
_adjust_fdiv
__p___initenv
__p__fmode
_XcptFilter
_exit
_except_handler3
_initterm

user32

CallWindowProcA
EnableMenuItem
GetKeyState
CharNextA
DestroyWindow
SendMessageA
GetFocus
IsIconic
ClientToScreen
FillRect
LoadIconA
EndDialog
SystemParametersInfoA
SetFocus
TranslateMessage
GetCursorPos
GetWindowTextA
CreatePopupMenu
TrackPopupMenu
UnregisterClassA
GetMenuItemCount
PostQuitMessage
GetActiveWindow
UpdateWindow
RegisterClassA
wsprintfA
GetDesktopWindow
DispatchMessageA
GetWindowPlacement
LoadCursorA
GetSystemMetrics
ShowWindow
GetForegroundWindow
EnableWindow
GetDC
EndPaint
PeekMessageA
ScreenToClient
RegisterWindowMessageA
SetWindowLongA
DefWindowProcA
CallNextHookEx
PtInRect
DestroyMenu
SetTimer
SetWindowPos
IsWindowVisible

Sections

.text
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25f08f96a3dd1ea58616e4c273ec41ec

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 1024B - Virtual size: 1020B

.rdata Size: 70KB - Virtual size: 70KB

.data Size: 30KB - Virtual size: 30KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 1024B - Virtual size: 1020B

.rdata
Size: 70KB - Virtual size: 70KB

.data
Size: 30KB - Virtual size: 30KB

.rsrc
Size: 10KB - Virtual size: 9KB