ecdfe5a721f2d4c5b41a6cacfaba03dbb6ab0a7da0fe5377532ab63cec85404c

General

Target

ecdfe5a721f2d4c5b41a6cacfaba03dbb6ab0a7da0fe5377532ab63cec85404c
Size

175KB
MD5

07be75251c7f8cceb81c32c65bb0c24b
SHA1

ae230bb863a95876d10e375b736b04b57f77f1ea
SHA256

ecdfe5a721f2d4c5b41a6cacfaba03dbb6ab0a7da0fe5377532ab63cec85404c
SHA512

274dc5b0f6acccbd6dca369f5b021ed390a5e263b374f9dc5153fd67c2daf9132bb506a75ebcb35a3e437d872f6f03d0ddc779a06a43bea78f09ae8003587208
SSDEEP

3072:KfrM6sNSv1Jd4PQE8HD1JThB4rnISdJ6GKTnS+9FGe/wL2ePBLN3h67/796Sd8cw:grMyvSPoD1JlSzq+MGe/wLHZLOR8cgWQ

Score

N/A

Malware Config

Signatures

Files

ecdfe5a721f2d4c5b41a6cacfaba03dbb6ab0a7da0fe5377532ab63cec85404c
.exe windows x86

a3948632bf32cd4ad541c1ce9f1ed682

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA

ws2_32

closesocket
ntohs

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
??3@YAXPAX@Z
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
free
_except_handler3
strcmp
rand
strlen
atoi
memcpy
memset
strcpy
strtok
??2@YAPAXI@Z
strcat
getenv

kernel32

GetStartupInfoA
AllocConsole
FreeConsole
VerLanguageNameA
lstrcmpiA
GetCurrentProcess
GetModuleHandleA
ReadProcessMemory
Sleep
GetModuleFileNameW
lstrlenW
WriteProcessMemory
GetCommandLineA
OutputDebugStringA
LoadLibraryA
GetProcAddress
GetModuleFileNameA
lstrcpyA
GetLastError
lstrcmpA
lstrcatA
CreateThread
WaitForSingleObject
ExitProcess
lstrlenA
CreateMutexA

user32

SetTimer
EnableMenuItem
SetWindowLongA
IsWindow
GetSubMenu
GetWindowLongA
ShowWindow
DialogBoxParamA
MessageBoxA
MessageBoxW
TranslateMessage

gdi32

DeleteObject
CreateDCA
CreateDIBitmap
TextOutA
StretchBlt
SelectPalette
RealizePalette

ole32

CoCreateInstance

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 107KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a3948632bf32cd4ad541c1ce9f1ed682

Headers

File Characteristics

Imports

version

ws2_32

msvcrt

kernel32

user32

gdi32

ole32

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 47KB - Virtual size: 50KB

.rsrc Size: 107KB - Virtual size: 231KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 47KB - Virtual size: 50KB

.rsrc
Size: 107KB - Virtual size: 231KB