3d5bb299471586ed621a1630bcea589bf4f9a3962358f146e6766b69c753b801

Sharing

Copy URL Twitter E-mail

General

Target

3d5bb299471586ed621a1630bcea589bf4f9a3962358f146e6766b69c753b801
Size

84KB
MD5

6f30a5a185e44b3c4f05cda7fba483f0
SHA1

364f521e654d0dee4c6109c8c3b1a3eb4b845883
SHA256

3d5bb299471586ed621a1630bcea589bf4f9a3962358f146e6766b69c753b801
SHA512

8a6d9303c53603d53024cf6da1c88f4236c7bb8c3e75f831c0edd53b68b236e1f55f2b65ebbdfefc44e95cb084797dd253d6149c81701a85e1adb1c425a92d20
SSDEEP

1536:uTgObi9AbK9+bF6S9Ubk9KxobA639Jbp9ZzsyVbnEAa9O1KQEtR85ioV6UaTbGCT:uxbi9AbK9+bF6S9Ubk93bA639Jbp9ZRI

Score

N/A

Malware Config

Signatures

Files

3d5bb299471586ed621a1630bcea589bf4f9a3962358f146e6766b69c753b801
.exe windows x86

c41b2ab0d4506a4572da12e7004fb344

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexA
GetVersionExA
Sleep
CloseHandle
GetTickCount
CreateMutexA
CreateFileA
DeviceIoControl
ReleaseMutex
TerminateProcess
GetCurrentProcess
LCMapStringA
GetStringTypeW
LCMapStringW
MultiByteToWideChar
LoadLibraryA
GetStringTypeA
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
HeapAlloc
RtlUnwind
HeapFree
GetACP
WriteFile
UnhandledExceptionFilter
HeapCreate
HeapDestroy
VirtualFree
GetFileType
GetStdHandle
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
FreeEnvironmentStringsW
GetEnvironmentVariableA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
SetHandleCount

user32

MessageBoxA
CreateWindowExA
GetMessageA
DispatchMessageA
TranslateMessage
ShowWindow
PostMessageA
UpdateWindow
LoadCursorA
GetSystemMetrics
RegisterClassExA
SendMessageA
LoadIconA
DefWindowProcA
EndPaint
DestroyWindow
InvalidateRect
ShowCursor
BeginPaint
PostQuitMessage
GetDC
ReleaseDC

gdi32

GetStockObject
LineTo
MoveToEx
GetTextExtentPoint32A
SetPixel
TextOutA
GetTextMetricsA
SelectObject
DeleteObject
CreatePen

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA

comctl32

ord17

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�u�ˣu#
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c41b2ab0d4506a4572da12e7004fb344

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

Sections

.text Size: 36KB - Virtual size: 34KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 14KB

.rsrc Size: 8KB - Virtual size: 4KB

�u�ˣu# Size: 20KB - Virtual size: 20KB

.text
Size: 36KB - Virtual size: 34KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 14KB

.rsrc
Size: 8KB - Virtual size: 4KB

�u�ˣu#
Size: 20KB - Virtual size: 20KB