6e9ff02a893a1e833f8f44b6bbc1deba1b8853b1f6f91e4dfcf2ffdb867ccc83

Sharing

Copy URL Twitter E-mail

General

Target

6e9ff02a893a1e833f8f44b6bbc1deba1b8853b1f6f91e4dfcf2ffdb867ccc83
Size

150KB
MD5

3f02d2f246f367c8c7aed4905b3b0040
SHA1

5716d3c9676f28dd78b95218ea8dfc7ac3fdd235
SHA256

6e9ff02a893a1e833f8f44b6bbc1deba1b8853b1f6f91e4dfcf2ffdb867ccc83
SHA512

f1ff8f03777665cb3fef4499ed0b2025a1b37a9f001fe3c7668dea36457515e5d4f2a39130931e5b8dce61d5e5ad8a7cf7091d7621487d16b4e80717d2ea9fbb
SSDEEP

3072:b+E0VCQ5MTYErG8F8+nIqwzKNfg33yE4wp35YrpizVxahAg:n0tM0k98+nflJ6V2

Score

N/A

Malware Config

Signatures

Files

6e9ff02a893a1e833f8f44b6bbc1deba1b8853b1f6f91e4dfcf2ffdb867ccc83
.exe windows x86

c72ebf58b32a93c30d42b2fdb92d483f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memcpy
fabs
ceil
malloc
floor
free
fclose
strlen
strcpy
strcat
_wcsnicmp
wcsncmp
wcsncpy
_wcsdup
wcslen
wcscpy
wcscat
_vsnwprintf

kernel32

GetModuleHandleW
HeapCreate
GetEnvironmentVariableW
HeapDestroy
ExitProcess
HeapAlloc
HeapFree
InitializeCriticalSection
LoadLibraryW
GetProcAddress
FreeLibrary
GetVersionExW
TlsAlloc
CloseHandle
CreateFileW
SetFilePointer
SetEndOfFile
WriteFile
GetCurrentProcess
DuplicateHandle
CreatePipe
GetStdHandle
CreateProcessW
WaitForSingleObject
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
DeleteCriticalSection
LoadLibraryA
Sleep

user32

DestroyWindow
GetWindow
SetActiveWindow
RemovePropW
SendMessageW
UnregisterClassW
DestroyAcceleratorTable
LoadIconW
LoadCursorW
FillRect
DestroyIcon

gdi32

DeleteObject
GetStockObject
GetObjectW
CreateCompatibleDC
GetDIBits
DeleteDC
GetObjectType
CreateDIBSection
SelectObject
BitBlt
CreateBitmap
SetPixel

comctl32

InitCommonControlsEx

ole32

RevokeDragDrop
CoInitialize

shell32

ShellExecuteExW

wsock32

closesocket
WSACleanup
WSAStartup

Sections

.code
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 377B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c72ebf58b32a93c30d42b2fdb92d483f

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comctl32

ole32

shell32

wsock32

Sections

.code Size: 1KB - Virtual size: 1KB

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 512B - Virtual size: 377B

.data Size: 65KB - Virtual size: 66KB

.rsrc Size: 67KB - Virtual size: 66KB

.code
Size: 1KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 512B - Virtual size: 377B

.data
Size: 65KB - Virtual size: 66KB

.rsrc
Size: 67KB - Virtual size: 66KB