542a865eac1dd6aa5de685dfeeb2f92d36eb7b6b210d504e421c1b245bb38732

Sharing

Copy URL

Twitter E-mail

General

Target

542a865eac1dd6aa5de685dfeeb2f92d36eb7b6b210d504e421c1b245bb38732
Size

157KB
MD5

43f9dae058f9d6da6e6ac6a9c2a8d7e1
SHA1

8f9b33ab344abd96a51d5aa72f5b5b482933898f
SHA256

542a865eac1dd6aa5de685dfeeb2f92d36eb7b6b210d504e421c1b245bb38732
SHA512

52edc8354c740b2050ccca855383583052e69f24c5e9e5910ee94f330122a5e5ee82b394fb0bf7975eefdc8e2808707ef9369ceee81cd52f2402a4639436b5b7
SSDEEP

1536:1ZcEJFL7xDcXKGz5uYwZYnANVjZVc8K+wC++RiBya3PMCcDEpITeynKDuaagoxey:1mm1DyA7toVHiYuaagoxe2Yo5nowd1

Score

N/A

Malware Config

Signatures

Files

542a865eac1dd6aa5de685dfeeb2f92d36eb7b6b210d504e421c1b245bb38732
.exe windows x86

1235be19c7a9675d714cb0633c14be53

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

VkKeyScanA
keybd_event
ShowWindow
SetFocus
OpenClipboard
BlockInput
SwitchToThisWindow
GetWindowTextA
EmptyClipboard
SetClipboardData
CloseClipboard
GetMenu
FindWindowA
IsWindow
FindWindowExA
SendMessageA
SetForegroundWindow

ole32

CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

VariantClear
SysAllocString
VariantInit

ws2_32

listen
shutdown
inet_addr
htons
__WSAFDIsSet
select
send
socket
closesocket
recv
accept
bind
ioctlsocket
setsockopt
WSAStartup
WSACleanup
connect

kernel32

GlobalUnlock
LocalFree
SetEndOfFile
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
FlushFileBuffers
SetStdHandle
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetFilePointer
HeapSize
RaiseException
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetVersion
GetCommandLineA
GetStartupInfoA
RtlUnwind
HeapAlloc
HeapReAlloc
HeapFree
WideCharToMultiByte
CreatePipe
DuplicateHandle
PeekNamedPipe
GetExitCodeProcess
ReadFile
TerminateProcess
ExitThread
Sleep
ExitProcess
CloseHandle
CreateProcessA
GetModuleFileNameA
GetSystemDirectoryA
DeleteFileA
OpenProcess
GetCurrentProcessId
GetLastError
CopyFileA
SetFileAttributesA
GetFileAttributesA
GetModuleHandleA
WaitForSingleObject
CreateMutexA
GetTickCount
GetTempPathA
TerminateThread
CreateThread
LoadLibraryA
GetProcAddress
GlobalLock
GlobalAlloc
GetLocaleInfoA
GetVersionExA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetLocalTime
WriteFile
CreateFileA
SetFileTime
GetFileTime
ExpandEnvironmentStringsA
MultiByteToWideChar
GetCurrentProcess

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 637KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1235be19c7a9675d714cb0633c14be53

Headers

File Characteristics

Imports

user32

ole32

oleaut32

ws2_32

kernel32

Sections

.text Size: 113KB - Virtual size: 112KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 36KB - Virtual size: 637KB

.text
Size: 113KB - Virtual size: 112KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 36KB - Virtual size: 637KB