54fe8cc2a320642b3fca1f573a8958b85531837900044b2a16cade19cd0df9d8

Sharing

Copy URL Twitter E-mail

General

Target

54fe8cc2a320642b3fca1f573a8958b85531837900044b2a16cade19cd0df9d8
Size

160KB
MD5

52844f7adaa0314344fda95c03db53d3
SHA1

30e8042e1ed6a8ac1d31b26af144f21fbcc058f6
SHA256

54fe8cc2a320642b3fca1f573a8958b85531837900044b2a16cade19cd0df9d8
SHA512

7e48331531413dc3832b711084d4970339c0cf54b363480e3901b1fdde3d3db7335d89a68e735f568d7d4cb62035ef16880d166cac561f21e94a5278d228a72d
SSDEEP

3072:k/NQDvfbu8XVdWBMdFnOvP1yhpynu/bVGls3dmWGgNt32o:k/IHbhFB3nOvNyhT/bz3T

Score

N/A

Malware Config

Signatures

Files

54fe8cc2a320642b3fca1f573a8958b85531837900044b2a16cade19cd0df9d8
.exe windows x86

315ad37424db62d6a37a70f31b5f2cf4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
CloseHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetConsoleOutputCP
WriteConsoleA
MultiByteToWideChar
GetCPInfo
GetOEMCP
GetACP
VirtualAlloc
HeapReAlloc
GetConsoleMode
GetConsoleCP
FlushFileBuffers
SetStdHandle
InitializeCriticalSection
RtlUnwind
GetModuleHandleA
GetSystemInfo
LoadLibraryA
GetProcAddress
lstrcpyW
GetModuleHandleW
GetLastError
LCMapStringW
CreateMutexW
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
SetFilePointer
HeapValidate
IsBadReadPtr
RaiseException
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
FatalAppExitA
InterlockedIncrement
InterlockedDecrement
ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapDestroy
HeapCreate
VirtualFree
WriteFile
DebugBreak
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
LoadLibraryW

user32

wsprintfW
SetForegroundWindow
SetWindowPos
SetWindowTextW
FindWindowA
GetWindowThreadProcessId
GetClassNameW
GetForegroundWindow
CallWindowProcW
DefWindowProcW
GetWindowRect
GetCursorPos
SetWindowTextA
wsprintfA
GetWindowTextA
LoadImageA
SendMessageA
SendMessageW
SetWindowLongW
CreateWindowExA
ShowWindow
SetTimer
DispatchMessageW
TranslateMessage
GetMessageW
UpdateWindow
ReleaseDC
SetWindowRgn
MoveWindow
GetDC
CreateWindowExW
RegisterClassExW
LoadCursorW
LoadIconW

gdi32

CreateFontIndirectW
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
CreateRoundRectRgn
GetDeviceCaps
GetObjectW
CreateFontIndirectA

Sections

.text
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

315ad37424db62d6a37a70f31b5f2cf4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 112KB - Virtual size: 110KB

.rdata Size: 32KB - Virtual size: 30KB

.data Size: 8KB - Virtual size: 63KB

.rsrc Size: 4KB - Virtual size: 296B

.text
Size: 112KB - Virtual size: 110KB

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 8KB - Virtual size: 63KB

.rsrc
Size: 4KB - Virtual size: 296B