e1d89e3b650d099b7fecb4081e702a12dc4ec4f0036ba8a943bbf7e8ce74e044

Sharing

Copy URL

Twitter E-mail

General

Target

e1d89e3b650d099b7fecb4081e702a12dc4ec4f0036ba8a943bbf7e8ce74e044
Size

529KB
MD5

74204399d2d8a25be76448626dd61299
SHA1

b2e0a1ea34da709e2b35bdc9b64a9662391192e3
SHA256

e1d89e3b650d099b7fecb4081e702a12dc4ec4f0036ba8a943bbf7e8ce74e044
SHA512

f41d213419445a354a574bfc86900ff5724cc5cbabf35fe65f5e15b73136101d5f866e2e8f5600a2f8bf62c2da819773ddb7d0b4cbd00be7e237ccdc00b98cb9
SSDEEP

12288:Bnu7/h3DNox+UtgjvXE5kmMy4lKx3x4GaGHjssYxHax:Ovoxrt4okzyDB/xjVYHax

Score

N/A

Malware Config

Signatures

Files

e1d89e3b650d099b7fecb4081e702a12dc4ec4f0036ba8a943bbf7e8ce74e044
.exe windows x86

803899665e49d8bec9afef08ccf1cb97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
RtlUnwind
HeapReAlloc
HeapAlloc
WriteConsoleW
OutputDebugStringA
MultiByteToWideChar
LCMapStringW
WriteFile
HeapCreate
GetEnvironmentStringsW
WideCharToMultiByte
HeapSize
HeapQueryInformation
HeapFree
IsProcessorFeaturePresent
RaiseException
CreateFileW
lstrcpyA
FillConsoleOutputAttribute
CancelIo
GetModuleHandleA
LocalAlloc
GetConsoleScreenBufferInfo
LoadLibraryA
GlobalFree
GetProcAddress
GetLastError
GetStdHandle
lstrcatA
SetConsoleCursorPosition
SetConsoleMode
LoadLibraryW
GlobalAlloc
GetTickCount
FormatMessageA
SetEvent
WaitForSingleObject
lstrlenA
FillConsoleOutputCharacterA
ExitProcess
OutputDebugStringW
FreeEnvironmentStringsW
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
DeleteCriticalSection
SetHandleCount
GetFileType
SetStdHandle
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
IsBadReadPtr
HeapValidate
SetLastError
GetModuleHandleW
FlushFileBuffers
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DecodePointer
EncodePointer
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
GetCurrentThreadId
TlsFree
CloseHandle

user32

CallWindowProcA
DialogBoxParamA
SendMessageW
CheckRadioButton
DispatchMessageA
EnumChildWindows
SendMessageTimeoutA
DefWindowProcA
EndDialog
EndPaint
DestroyWindow
GetSystemMenu
PostQuitMessage
DeleteMenu
wsprintfA
GetClientRect
SendMessageA
BeginPaint
GetDC
SetWindowLongA
MessageBoxA
UnregisterClassA
GetWindowLongA
CreateWindowExA
ReleaseDC

gdi32

GetTextExtentPoint32A
StartPage
CreateFontA
GetDeviceCaps
CreateFontIndirectA
SetBkColor
DeleteObject
SelectObject
Rectangle
StartDocA
SaveDC
Escape
CreatePen
GetClipBox
EndDoc
ExtTextOutA
RestoreDC
CreateSolidBrush
TextOutA
EndPage

comdlg32

FindTextW

ole32

CreateStreamOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
GetHGlobalFromStream
CoInitializeEx
CreateBindCtx

oleaut32

SysFreeString
SysAllocString

msimg32

GradientFill

winhttp

WinHttpSetTimeouts

Sections

.text
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 254KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

803899665e49d8bec9afef08ccf1cb97

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

oleaut32

msimg32

winhttp

Sections

.text Size: 143KB - Virtual size: 142KB

.rdata Size: 254KB - Virtual size: 254KB

.data Size: 10KB - Virtual size: 17KB

.rsrc Size: 104KB - Virtual size: 104KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 143KB - Virtual size: 142KB

.rdata
Size: 254KB - Virtual size: 254KB

.data
Size: 10KB - Virtual size: 17KB

.rsrc
Size: 104KB - Virtual size: 104KB

.reloc
Size: 16KB - Virtual size: 15KB