e46c1f3b94d068fdfa5ece6963feda2ef0a5e4db498b1a21c8031f383a0b276d

General

Target

e46c1f3b94d068fdfa5ece6963feda2ef0a5e4db498b1a21c8031f383a0b276d
Size

149KB
MD5

677590842490dc458775c8f457286d80
SHA1

48a4779a83756fe27f23c90d63cab8cebd3e2a4e
SHA256

e46c1f3b94d068fdfa5ece6963feda2ef0a5e4db498b1a21c8031f383a0b276d
SHA512

bbf8918ea59feb74f9b7805a88f0e3b9e3e4f18469982a83f2b04530035c19fa08a96cad1089aeb1a63f31c27b260790c760ddc02ecb7bc8fb8e7d2969c639fd
SSDEEP

3072:mvjhWq7zvsShZN2nJo4CcGXU43xUwl51gx2zjX9NrPDbYuBn:mvD2n7O4wl51gxKXjrPHh

Score

N/A

Malware Config

Signatures

Files

e46c1f3b94d068fdfa5ece6963feda2ef0a5e4db498b1a21c8031f383a0b276d
.exe windows x86

3b5a3fb4724c0ac97c4a62436d07b8be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetThreadTimes
SetDefaultCommConfigW
UnlockFile
PeekNamedPipe
GetCommState
HeapCreate
WaitForMultipleObjectsEx
OpenJobObjectA
GetCalendarInfoA
GetModuleHandleW
ReadConsoleOutputA
FindResourceW
GetPrivateProfileStructA
VirtualUnlock
ReadConsoleInputA
QueryDosDeviceA
SetProcessPriorityBoost
GetCurrentProcessId
Module32NextW
SizeofResource
GetModuleHandleA
GetLocaleInfoW

msvcrt

_wcstoui64
_mbsncat
_putenv
_except_handler3
_fcvt
longjmp
__set_app_type
_initterm
exit
getchar
_XcptFilter
_adjust_fdiv
_mbsstr
_wspawnlp
_exit
strchr
_strtoi64
isalpha
wcstombs
_controlfp
_beginthreadex
atol
_lsearch
__p__fmode
__setusermatherr
__getmainargs
_acmdln
__p__commode
strftime

user32

TileWindows
SetKeyboardState
UpdateWindow
ShowWindowAsync
RegisterShellHookWindow
GetWindowTextW
GetTopWindow
WaitForInputIdle
IsZoomed
CharLowerW
RemoveMenu
GetAltTabInfoA
IsCharAlphaNumericW
LockWorkStation
CreateWindowExA
InvalidateRgn
DlgDirSelectExA
DdeKeepStringHandle
DragObject

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b5a3fb4724c0ac97c4a62436d07b8be

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 85KB - Virtual size: 84KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 512B - Virtual size: 84KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 85KB - Virtual size: 84KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 512B - Virtual size: 84KB

.rsrc
Size: 9KB - Virtual size: 9KB