ca23e5368ee969aca30de4095ce816a93fa5b0fafc34843363fd959f202468a6

Sharing

Copy URL Twitter E-mail

General

Target

ca23e5368ee969aca30de4095ce816a93fa5b0fafc34843363fd959f202468a6
Size

549KB
MD5

644f024377d316bff463e23acea750e8
SHA1

7baf6e45b1b944a7dd071e4673ef7b9e99ce1c55
SHA256

ca23e5368ee969aca30de4095ce816a93fa5b0fafc34843363fd959f202468a6
SHA512

9090525e517cedcfda9ad98051ae06edae72ed156125596471be60d1cafb112a79600f0aece3ef37cc1f6d45b2539856bc0aa04805656701241ce5b378d4a6a0
SSDEEP

12288:RaouazaBD8gG+hX0zAbFtkkdHLsAnamI3KfEth55V4FsJD:6azmYgGsRTdHc3EEtO

Score

N/A

Malware Config

Signatures

Files

ca23e5368ee969aca30de4095ce816a93fa5b0fafc34843363fd959f202468a6
.exe windows x86

7aaee1a0e5eab8629f9acd8b7ebdbc22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
HeapFree
GetLocaleInfoA
EnterCriticalSection
GetEnvironmentStrings
SetHandleCount
ReadFile
HeapCreate
CloseHandle
UnhandledExceptionFilter
GetCommandLineA
Sleep
TlsGetValue
FreeEnvironmentStringsW
SetEnvironmentVariableA
VirtualFree
TerminateProcess
GetCPInfo
HeapAlloc
HeapReAlloc
GetFileType
ExitProcess
InterlockedDecrement
CompareStringA
FlushFileBuffers
CreateFileA
InitializeCriticalSectionAndSpinCount
GetStartupInfoA
GetSystemTimeAsFileTime
FreeLibrary
GetCurrentProcess
TlsFree
FreeEnvironmentStringsA
InterlockedIncrement
GetFileAttributesW
VirtualAlloc
CompareStringW
DeleteCriticalSection
SetConsoleCtrlHandler
LCMapStringA
GetStringTypeW
IsValidLocale
LCMapStringW
EnumSystemLocalesA
GetModuleFileNameA
GetStringTypeA
IsDebuggerPresent
GetPrivateProfileStructA
TlsSetValue
GetLocaleInfoW
WriteFile
GetTimeZoneInformation
GetTickCount
GetModuleHandleW
GetCurrentThread
SetStdHandle
VirtualQuery
GetModuleHandleA
OpenMutexA
GetCurrentThreadId
MultiByteToWideChar
GetConsoleCP
GetConsoleOutputCP
GetLastError
HeapSize
RtlUnwind
SetLastError
InterlockedExchange
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetStdHandle
WriteConsoleA
LeaveCriticalSection
CreateMutexA
GetCurrentProcessId
WriteConsoleW
GetUserDefaultLCID
HeapDestroy
TlsAlloc
GetEnvironmentStringsW
GetDateFormatA
GetProcAddress
GetACP
GetOEMCP
IsValidCodePage
GetTimeFormatA
WideCharToMultiByte
SetFilePointer
GetConsoleMode

shell32

SHGetDiskFreeSpaceA
SHEmptyRecycleBinW
SHChangeNotify
InternalExtractIconListW

user32

RegisterClassA
ShowCursor
MessageBoxIndirectW
DdeDisconnectList
RegisterDeviceNotificationA
SetCaretPos
SetMessageExtraInfo
OpenIcon
wvsprintfA
RegisterClassExA
EnumDesktopsA
DdeGetData
GetCapture

comctl32

ImageList_AddMasked
DrawStatusTextW
ImageList_Add
CreatePropertySheetPageA
InitMUILanguage
ImageList_SetImageCount
DrawInsert
ImageList_Write
InitCommonControlsEx
GetEffectiveClientRect
ImageList_LoadImageW
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_GetFlags
DestroyPropertySheetPage
ImageList_Replace
ImageList_Copy
ImageList_GetDragImage
ImageList_SetFlags

Sections

.text
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 250KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7aaee1a0e5eab8629f9acd8b7ebdbc22

Headers

File Characteristics

Imports

kernel32

shell32

user32

comctl32

Sections

.text Size: 161KB - Virtual size: 160KB

.rdata Size: 250KB - Virtual size: 271KB

.data Size: 121KB - Virtual size: 121KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 161KB - Virtual size: 160KB

.rdata
Size: 250KB - Virtual size: 271KB

.data
Size: 121KB - Virtual size: 121KB

.rsrc
Size: 16KB - Virtual size: 15KB