281f6b0675e4846a090d7e12b31cc02c583c76b229e8763b7afbd5529da6525b

Sharing

Copy URL Twitter E-mail

General

Target

281f6b0675e4846a090d7e12b31cc02c583c76b229e8763b7afbd5529da6525b
Size

122KB
MD5

0725df5d7380e0926d063e8c8f87ba08
SHA1

c77370dd9f5103624cdfe77af17e95d261a5ca33
SHA256

281f6b0675e4846a090d7e12b31cc02c583c76b229e8763b7afbd5529da6525b
SHA512

b4df82f17ae20100473a837291762a660ecc0867ba86634c4f475f1f2791c961675ebe1f6933d0a6a2d590d7bd49a3d5acc7e22103880a8b9a1071076a443932
SSDEEP

3072:+i48+Wxi2s7s2JxIcAAg0FuoCCNCItIEqltc1C68:r+WBso2JxPAAO5CNCIs3cU

Score

N/A

Malware Config

Signatures

Files

281f6b0675e4846a090d7e12b31cc02c583c76b229e8763b7afbd5529da6525b
.exe windows x86

52a45d8dde441cea067b89cf7931c83b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
WriteConsoleW
SetFilePointer
ReadFile
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapSize
HeapReAlloc
IsProcessorFeaturePresent
RtlUnwind
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
CloseHandle
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
LoadLibraryW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
Sleep
GetStringTypeW
LCMapStringW
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetStdHandle
OpenMutexA
GetProcAddress
LoadLibraryA
GetLastError
GetFileAttributesW
WriteFile
GetTickCount
WaitForSingleObject
HeapFree
GetCurrentProcess
HeapAlloc
lstrlenA
QueryPerformanceCounter
CreateFileA
HeapCreate
CreateFileW
TerminateProcess
MultiByteToWideChar
InterlockedDecrement
GetCPInfo
WideCharToMultiByte
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
InterlockedIncrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent

user32

MessageBoxA
GetMessageA
CloseClipboard
LoadMenuIndirectA
SendDlgItemMessageA
IsZoomed
GetFocus
GetClientRect
SetFocus
SendMessageA
EnumWindows
IsDialogMessageA
TranslateMessage
ChildWindowFromPoint
GetMenu
GetGUIThreadInfo
GetWindowThreadProcessId
GetWindowLongA
CreateWindowExA
ReleaseDC
GetDlgItem
ScrollWindow
DefWindowProcA
DestroyCursor
LoadAcceleratorsA
CreatePopupMenu
IsWindow
PostMessageA
CreateWindowExW
DispatchMessageA
GetSystemMetrics
CloseWindow
GetDlgItemTextA
SetDlgItemTextA
GetDialogBaseUnits

gdi32

SetPixel
DeleteDC

advapi32

CheckTokenMembership
RegOpenKeyExW
FreeSid
OpenSCManagerA
RegDeleteValueW
EnumServicesStatusA

ws2_32

gethostname

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52a45d8dde441cea067b89cf7931c83b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ws2_32

Sections

.text Size: 62KB - Virtual size: 62KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 29KB - Virtual size: 37KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 62KB - Virtual size: 62KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 29KB - Virtual size: 37KB

.rsrc
Size: 1KB - Virtual size: 1KB