f058c7f9ed93c1ad07db32b6bf56de33f564e63861a4d36d1475c2109fbf04d4

Sharing

Copy URL

Twitter E-mail

General

Target

f058c7f9ed93c1ad07db32b6bf56de33f564e63861a4d36d1475c2109fbf04d4
Size

285KB
MD5

6e6851c9594165890afaf9d93fb47960
SHA1

0aed3543cf1b79bc5556207ba63b0b8a47e03868
SHA256

f058c7f9ed93c1ad07db32b6bf56de33f564e63861a4d36d1475c2109fbf04d4
SHA512

a8f741321d2c9f3a3895f20609b25cd532e34db58c7b5e733792b8b32966092171e4b08f722b03d4270774a36230a6e1eee50972161040bf291c11c365e50767
SSDEEP

6144:aMqylurv771DBjuaoLuY+P2H8ah1JTIhGpa2oywFgVyR10GZKV6NkyS8:5lurv771DBVdeHzLTIYkywFcyVZKkTS8

Score

N/A

Malware Config

Signatures

Files

f058c7f9ed93c1ad07db32b6bf56de33f564e63861a4d36d1475c2109fbf04d4
.exe windows x86

3c6cdb5a3f424223ebab2570d58082c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetLengthSid
RegOpenKeyA
RegQueryInfoKeyA

kernel32

WaitForSingleObject
ExitProcess
GetProcAddress
GlobalAlloc
GetOEMCP
SetThreadLocale
InitializeCriticalSection
lstrcpynA
LoadLibraryExA
GetStartupInfoA
SetEvent
GlobalFindAtomA
GetDateFormatA
LocalAlloc
SetFilePointer
GetCommandLineW
VirtualQuery
ExitThread
GetModuleHandleW
GetCurrentThread
ReadFile
WideCharToMultiByte
SetLastError
ResetEvent
GetVersion
GetStringTypeA
lstrlenW
GetFileSize
RaiseException
GetFullPathNameA
CloseHandle
GetLocalTime
LoadLibraryA
SizeofResource
GetModuleFileNameA
FindClose
GetModuleHandleA
lstrcmpiA
GetStdHandle
GetSystemDefaultLangID
GetACP
VirtualAllocEx
GetLocaleInfoA
EnumCalendarInfoA
GetCurrentProcessId
EnterCriticalSection
GetEnvironmentStrings
FindResourceA
DeleteFileA
GetThreadLocale
LocalFree
LockResource
HeapFree
SetHandleCount
lstrcmpA
GetProcessHeap
GetCommandLineA
SetErrorMode
IsBadHugeReadPtr
GetLastError
lstrlenA
Sleep

user32

ShowOwnedPopups
SetWindowsHookExA
SetWindowLongA
SetWindowTextA
SetRect
SetScrollInfo
SystemParametersInfoA
ShowScrollBar
SetWindowPos
SetTimer
SetScrollPos
TranslateMessage
UnregisterClassA
TrackPopupMenu
TranslateMDISysAccel
SetMenuItemInfoA
SetMenu
ShowWindow
SetClassLongA
SetCursor
SetClipboardData
SetFocus
UnhookWindowsHookEx
SetWindowPlacement
SetCapture
SetForegroundWindow
SetWindowLongW
SetPropA
SetScrollRange
SetParent

version

GetFileVersionInfoA
VerFindFileA

comdlg32

ChooseColorA
GetSaveFileNameA
GetOpenFileNameA

msvcrt

memset
pow
exp

Sections

CODE
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 1024B - Virtual size: 935B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fdata
Size: 1024B - Virtual size: 637B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 884B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c6cdb5a3f424223ebab2570d58082c2

Headers

File Characteristics

Imports

advapi32

kernel32

user32

version

comdlg32

msvcrt

Sections

CODE Size: 44KB - Virtual size: 44KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 8KB

.bdata Size: 1024B - Virtual size: 935B

.adata Size: 224KB - Virtual size: 223KB

.fdata Size: 1024B - Virtual size: 637B

.rsrc Size: 1024B - Virtual size: 884B

CODE
Size: 44KB - Virtual size: 44KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 8KB

.bdata
Size: 1024B - Virtual size: 935B

.adata
Size: 224KB - Virtual size: 223KB

.fdata
Size: 1024B - Virtual size: 637B

.rsrc
Size: 1024B - Virtual size: 884B