d3dfadd36e7b419f3c76de198eb763dd7dfb78cfd671b5a6d70c50bc1338f2e6

Sharing

Copy URL Twitter E-mail

General

Target

d3dfadd36e7b419f3c76de198eb763dd7dfb78cfd671b5a6d70c50bc1338f2e6
Size

593KB
MD5

577a6718c9fa6b579ad13aafc1d4398f
SHA1

c0cc1c5a68a732dc1759e4d54eb5e595649a81d5
SHA256

d3dfadd36e7b419f3c76de198eb763dd7dfb78cfd671b5a6d70c50bc1338f2e6
SHA512

9eb317d96a56985d3f527433db5a49628308f3e22f6b9e0832fd6e8a3c455cf27eef8fd46146f81a45aa0ee174d1fc661702d976a1da3128aa2e2e171c0fb88c
SSDEEP

12288:eoERhw4Soqsp5ULvVu2KP9rHeXEar+lN/f18QtNxy9RrOPT8IPIxE:efR24SoBp5WvZm9rckNX3tNxARsb

Score

N/A

Malware Config

Signatures

Files

d3dfadd36e7b419f3c76de198eb763dd7dfb78cfd671b5a6d70c50bc1338f2e6
.exe windows x86

504b969d30f2a2bb17fd24ef1331efc9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetFocus
SetWindowPos
EndPaint
PeekMessageA
GetDC
ReleaseDC
GetKeyState
DestroyWindow
GetParent
ShowWindow
EnableWindow
TranslateMessage
IsWindowEnabled
LoadStringA
EnableMenuItem
RegisterClassA
CreateWindowExA
FillRect
DispatchMessageA
MapWindowPoints
BeginPaint
DefWindowProcA
GetSystemMetrics
GetWindowRect
IsIconic
PostMessageA
ReleaseCapture
SetWindowLongA
PtInRect
SetTimer
GetDlgItem
ScreenToClient
LoadCursorA
GetDesktopWindow
SetForegroundWindow
EndDialog
GetSysColor
IsWindowVisible
wsprintfA
GetClientRect
CallWindowProcA
SetCursor

kernel32

GetStdHandle
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
HeapDestroy
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
CreateFileA
GetCPInfo
GetStringTypeA
GetSystemTimeAsFileTime
InterlockedExchange
WriteFile
SetStdHandle
HeapReAlloc
GetStringTypeW
GetFullPathNameA
LocalFree
InitializeCriticalSection
LoadResource
FindClose
InterlockedDecrement
FormatMessageA
SetLastError
GetEnvironmentVariableA
IsDebuggerPresent
GetVersionExA
GetModuleFileNameA
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
SetFilePointer
CreateThread
SetUnhandledExceptionFilter
TerminateProcess
GetLastError
GetCurrentThreadId
GetVersion
GetCurrentProcessId
GetTickCount
GetCommandLineA
GetModuleHandleA
ExitProcess
GetCurrentThread
HeapAlloc
GetProcessHeap
VirtualAlloc
FindResourceA
Sleep
VirtualFree
UnmapViewOfFile
GetEnvironmentStrings
GlobalLock
GetACP
CloseHandle
ReadFile
MapViewOfFile
RaiseException
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
SizeofResource
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
HeapCreate
LCMapStringW
LeaveCriticalSection
TlsSetValue
GetFileType
CreateFileW
GetTimeZoneInformation
GetProcAddress
DuplicateHandle
CompareStringA
lstrcpyA
lstrcmpA
WaitForMultipleObjects
DeleteFileW
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
FreeLibrary
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
SetEndOfFile
GlobalAlloc

gdi32

DeleteObject
GetDeviceCaps
DeleteDC
SetTextColor

Sections

.text
Size: 547KB - Virtual size: 870KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

504b969d30f2a2bb17fd24ef1331efc9

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 547KB - Virtual size: 870KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 27KB - Virtual size: 27KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 547KB - Virtual size: 870KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 11KB - Virtual size: 10KB