ef40aea62d98f3e0eaa082c568a713ee006e634a77377a2203048a5fbc131e47

General

Target

ef40aea62d98f3e0eaa082c568a713ee006e634a77377a2203048a5fbc131e47
Size

104KB
MD5

410176861ae6fc66156947bee494acb0
SHA1

a26fed419a292035fac76a08e84f750747f1f794
SHA256

ef40aea62d98f3e0eaa082c568a713ee006e634a77377a2203048a5fbc131e47
SHA512

d1ca9c5bbe35f15ae3335284da28529049722099ecf84b6686eea320b74c076339c8daec34e59238673f548b4fb89dc914f8e8d4eb90e6161dd18494e4753696
SSDEEP

1536:wHAMwFvUbWGXCm/yQjH910kqLX5N7a/Taq5dBcAhiVwa6nXI:DYW6CALH07LpFkddBcOiG9XI

Score

N/A

Malware Config

Signatures

Files

ef40aea62d98f3e0eaa082c568a713ee006e634a77377a2203048a5fbc131e47
.exe windows x86

8450ce3736aed2a1070399d5cbaa3df4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetFileSize
SetEvent
ReadFile
SetFilePointer
ResetEvent
ExitProcess
ResumeThread
CloseHandle
GetStdHandle
CreateThread
CreateFileA
OutputDebugStringA
CreateSemaphoreA
VirtualFree
DeleteFileA
CreateEventA
GetVersionExA
VirtualAlloc
GetCurrentProcessId
GetWindowsDirectoryA
GetCurrentThread
LocalFree
lstrcatA
SuspendThread
lstrcpyA
LocalAlloc
GetSystemDirectoryA
CreateMutexA
WriteFile
GetProcAddress
GetModuleHandleA
WaitForSingleObject
GetCurrentDirectoryA
ReleaseMutex
GetCommandLineA
GetCurrentThreadId
lstrlenA

advapi32

GetUserNameA

user32

GetActiveWindow
GetSystemMetrics
MessageBoxA
SendMessageA
CreateDialogParamA
ShowWindow
GetForegroundWindow
GetClassInfoExA
GetWindow
RegisterClassA

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8450ce3736aed2a1070399d5cbaa3df4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

user32

ole32

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 68KB - Virtual size: 115KB

.rsrc Size: 4KB - Virtual size: 436B

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 68KB - Virtual size: 115KB

.rsrc
Size: 4KB - Virtual size: 436B