7439572bc376839e7b049179e111c03cf8d51bdac6a78fc607fd91ff869d9ce2

Sharing

Copy URL Twitter E-mail

General

Target

7439572bc376839e7b049179e111c03cf8d51bdac6a78fc607fd91ff869d9ce2
Size

31KB
MD5

6d6b3d37a9f0fb77533384825d6977c3
SHA1

ce9a1add50833349a3a1c9fbaead63ae06100cbd
SHA256

7439572bc376839e7b049179e111c03cf8d51bdac6a78fc607fd91ff869d9ce2
SHA512

4ce23d6b06f0c3a876cc66882d6f7aac31853c75a784d35b6ace7e018751724fa90cb266eee823459fb3f766d344a0fd71778bf169120929039e5f9d9eae2797
SSDEEP

768:h/D0hecGjlvgZzYWIno5BPR7jgohhPYqystucYD0:ZwbGjZgT+aVRAGPjtucg

Score

N/A

Malware Config

Signatures

Files

7439572bc376839e7b049179e111c03cf8d51bdac6a78fc607fd91ff869d9ce2
.exe windows x86

657401565db1cf5da1cb04e888ff0211

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetProcessHeap
InterlockedExchange
GetFileType
HeapDestroy
GetEnvironmentVariableW
DecodePointer
VirtualProtect
GetPrivateProfileSectionA
SetErrorMode
ReleaseMutex
HeapSize
GetDiskFreeSpaceA
SetFileTime
ReadConsoleInputA
GetTempPathA
SetCurrentDirectoryW
SetNamedPipeHandleState
SearchPathA
GetVersionExW
GetStartupInfoA
GetOverlappedResult
GetDriveTypeA
SetThreadContext
CreateDirectoryA
OpenEventA
GetSystemInfo
GetFileAttributesExW
VerifyVersionInfoW
GlobalLock
PeekNamedPipe
MoveFileExW
GetVersionExA
SetThreadExecutionState
FormatMessageW
FindResourceW
SetCurrentDirectoryA
lstrcatA
lstrlenA
FindResourceA
CreateSemaphoreA
GetFileSize
lstrcmpW
ReadConsoleA
GetTempFileNameW
ExpandEnvironmentStringsA
GetConsoleAliasExesLengthA
GetConsoleScreenBufferInfo
GetStringTypeExW
ActivateActCtx
GetModuleFileNameA
GetCPInfo
GetOEMCP
GetStringTypeA
WriteProcessMemory
SetConsoleScreenBufferSize
GetSystemDefaultUILanguage
GlobalAddAtomW
CreateEventA
FlushFileBuffers
GetCurrentProcessId
SetConsoleTitleA
GetExitCodeThread
GetCurrentDirectoryW
EnumCalendarInfoW
DebugBreak
GetACP
SetStdHandle
CreatePipe
WaitForSingleObject
GetDiskFreeSpaceExW
GetConsoleCP
FormatMessageA
GlobalGetAtomNameA
WaitForMultipleObjectsEx
GetUserDefaultLCID
GlobalReAlloc
IsProcessorFeaturePresent

user32

EndMenu
LoadKeyboardLayoutW
CheckMenuRadioItem
GetNextDlgGroupItem
RegisterHotKey
DrawFrame
ToAsciiEx
PostMessageW
GetMenuDefaultItem
IsCharAlphaNumericA
GetWindowTextA
GetClipCursor
GetUpdateRgn
GetGuiResources
GetQueueStatus

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 736B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

657401565db1cf5da1cb04e888ff0211

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 1024B - Virtual size: 736B

.rsrc Size: 512B - Virtual size: 72KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 1024B - Virtual size: 736B

.rsrc
Size: 512B - Virtual size: 72KB