6b39791506b2aa1f55e2e83a8c40f189ddefcf589017f80246dd5eeb1ac07dd4

Sharing

Copy URL Twitter E-mail

General

Target

6b39791506b2aa1f55e2e83a8c40f189ddefcf589017f80246dd5eeb1ac07dd4
Size

645KB
MD5

6d637642445327eb9b518ae0c8ad4895
SHA1

fcf8a87a97e42903e0bc44355400daeb895f820e
SHA256

6b39791506b2aa1f55e2e83a8c40f189ddefcf589017f80246dd5eeb1ac07dd4
SHA512

36ae7aeac11a8aefbee3749498d75b7be1817acf1fb8371066228a1b7d5e97956689a8576fda652429d2ca50c8e7dd796c58e4f1900293c896f8f144f3645ce2
SSDEEP

12288:0ia9ATb6gLpU9a807Uc9NOD1bN4UQ+dJr8mC5P1Fe7+Iebxc:0n9ATb6b9Z0gc9NuPQyp8mCTFeqIH

Score

N/A

Malware Config

Signatures

Files

6b39791506b2aa1f55e2e83a8c40f189ddefcf589017f80246dd5eeb1ac07dd4
.exe windows x86

b4b0b367c7c7eeaf87bb16bcd3dc7591

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
GetCurrentThreadId
GetVersion
GetCommandLineA
GetModuleHandleA
GetCurrentProcessId
GetTickCount
ExitProcess
HeapAlloc
GetProcessHeap
VirtualAlloc
Sleep
VirtualFree
WriteFile
HeapCreate
IsValidCodePage
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
RaiseException
InterlockedCompareExchange
HeapSize
GetCurrentDirectoryA
GetCommandLineW
SetFileTime
LockResource
GetEnvironmentStrings
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
LCMapStringW
GetLastError
InterlockedIncrement
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
GetProcAddress
DuplicateHandle
FindFirstFileW
CreateFileMappingA
CompareStringA
FindFirstFileA
UnmapViewOfFile
lstrcmpA
GlobalLock
GetFullPathNameA
DeleteFileA
GetFileSize
FreeLibrary
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
SetEvent
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetLocaleInfoA
SetEndOfFile
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
GetPrivateProfileStringA
GetModuleFileNameA
FlushFileBuffers
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
LocalFree
GetExitCodeProcess
SetFileAttributesA
GetStringTypeW
HeapReAlloc
InterlockedDecrement
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
SetStdHandle
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindNextFileA
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
GetConsoleOutputCP
GetStdHandle

user32

SetCursor
CallWindowProcA
SendMessageA
InvalidateRect
GetSysColor
DialogBoxParamA
SetDlgItemTextA
EndDialog
GetFocus
GetDesktopWindow
TrackPopupMenu
LoadIconA
ScreenToClient
GetDlgItem
CheckMenuItem
SetWindowLongA
SetCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
SetFocus
SetTimer
GetWindowLongA
RegisterClassA
EnableMenuItem
IsWindowEnabled
TranslateMessage
PeekMessageA
EnableWindow
ShowWindow
GetParent
GetClientRect
GetDC
EndPaint
PostQuitMessage
SetForegroundWindow

Sections

.text
Size: 605KB - Virtual size: 931KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4b0b367c7c7eeaf87bb16bcd3dc7591

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 605KB - Virtual size: 931KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 14KB - Virtual size: 13KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 605KB - Virtual size: 931KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 18KB - Virtual size: 18KB