19b2579caf5e8b9856581d69a1bfd499524d7bcd4e50ff63a6deedb5949940ac

Sharing

Copy URL Twitter E-mail

General

Target

19b2579caf5e8b9856581d69a1bfd499524d7bcd4e50ff63a6deedb5949940ac
Size

304KB
MD5

7082b0c3e2354811d8ed36e091e84040
SHA1

fef662fd7b657572c70abacdc262746c44855612
SHA256

19b2579caf5e8b9856581d69a1bfd499524d7bcd4e50ff63a6deedb5949940ac
SHA512

468f89568d7a15851142032b69d7626534588a9fcbc25874bf21cc6d75eb5355d5e213437ac6088afc6f01d432bb081aebbe68161e0e8190b5ef3d27f6601b7c
SSDEEP

6144:N6Sb27f/0Z2yFF9NLICjZmnr+xkdChrvb4uPFHzdPR1Iz0Ay9GTub:QSbCfo3PkClmn+4cH5p+zssTub

Score

N/A

Malware Config

Signatures

Files

19b2579caf5e8b9856581d69a1bfd499524d7bcd4e50ff63a6deedb5949940ac
.exe windows x86

cea3071bdb4a53964b219fdf545f11a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
GetLocaleInfoA
ReadFile
GetTickCount
RtlUnwind
CompareStringA
FreeEnvironmentStringsA
VirtualQuery
LCMapStringW
UnhandledExceptionFilter
WriteFile
FindAtomW
GetFileType
GetVersionExA
SetLastError
GetStringTypeA
GetTimeFormatA
VirtualFree
GetACP
HeapSize
SetHandleCount
MultiByteToWideChar
HeapReAlloc
EnterCriticalSection
GetLastError
TlsGetValue
WideCharToMultiByte
VirtualAlloc
CompareStringW
VirtualProtect
HeapFree
TlsSetValue
GetCommandLineA
HeapAlloc
InterlockedExchange
IsValidLocale
GetUserDefaultLCID
TerminateProcess
GetEnvironmentStrings
GetLocaleInfoW
IsValidCodePage
GetProcAddress
GetOEMCP
LeaveCriticalSection
GetModuleFileNameA
CloseHandle
IsBadWritePtr
GetCurrentProcess
LoadLibraryA
GetModuleFileNameW
OpenMutexA
SetFilePointer
GetStringTypeW
GetCurrentThread
SetStdHandle
GetStartupInfoA
InitializeCriticalSection
EnumSystemLocalesA
GetModuleHandleA
GetSystemTimeAsFileTime
TlsAlloc
FlushFileBuffers
SetEnvironmentVariableA
GetCommandLineW
GetCPInfo
GetTimeZoneInformation
GetEnvironmentStringsW
DeleteCriticalSection
lstrlen
GetStartupInfoW
HeapCreate
GetSystemInfo
TlsFree
QueryPerformanceCounter
GetCurrentThreadId
GetDateFormatA
LCMapStringA
ExitProcess
CreateMutexA
GetCurrentProcessId
FreeEnvironmentStringsW
HeapDestroy

shell32

SHChangeNotify
SHFormatDrive
ExtractIconW
SHGetFileInfo

comctl32

CreateMappedBitmap
GetEffectiveClientRect
CreateToolbar
InitCommonControlsEx

user32

RegisterClassExA
CreateWindowExA
DdeCreateDataHandle
CharPrevExA
ShowWindow
GetWindowModuleFileNameA
RegisterClassA
GetWindowThreadProcessId
GetTitleBarInfo
MessageBoxW
SetCaretPos

Sections

.text
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cea3071bdb4a53964b219fdf545f11a7

Headers

File Characteristics

Imports

kernel32

shell32

comctl32

user32

Sections

.text Size: 173KB - Virtual size: 173KB

.rdata Size: 29KB - Virtual size: 33KB

.data Size: 88KB - Virtual size: 87KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 173KB - Virtual size: 173KB

.rdata
Size: 29KB - Virtual size: 33KB

.data
Size: 88KB - Virtual size: 87KB

.rsrc
Size: 12KB - Virtual size: 11KB