891e35a1c52175fd396334715b2d347536e598e245ccd2af8cd3282128eec652

Sharing

Copy URL

Twitter E-mail

General

Target

891e35a1c52175fd396334715b2d347536e598e245ccd2af8cd3282128eec652
Size

273KB
MD5

4135569d7b75d8f0af8d0a3c0cc83620
SHA1

1eb612b4cb845030e73921bf64b09ca950e00962
SHA256

891e35a1c52175fd396334715b2d347536e598e245ccd2af8cd3282128eec652
SHA512

badb8ec5812d24190e716ea31533eda95a24e93dd78743f5e727bcede10600e673c7872207435b22148c907b01e8e2bfd379b58aa507435ee7054463b0db975a
SSDEEP

6144:moHBh6brDuslHatqbzIXwFFMsx1dwoMazboVrP3jf1Dn47WvH:mSBh6brDusl6sbzIXwFFMiMebkvhiW

Score

N/A

Malware Config

Signatures

Files

891e35a1c52175fd396334715b2d347536e598e245ccd2af8cd3282128eec652
.exe windows x86

1ea91d260c698fabbdccc1485860ed02

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowsHookExA
TranslateMessage
UnregisterHotKey
CreateMenu
DeferWindowPos
BeginDeferWindowPos
GetKeyNameTextA
DestroyIcon
DrawEdge
SetDlgItemTextA
IsDlgButtonChecked
FillRect
TrackPopupMenu
DrawFrameControl
PostMessageA
RegisterWindowMessageA
IsDialogMessageA
GetActiveWindow
AppendMenuA
CheckMenuRadioItem
LoadImageA
DrawIcon
RegisterHotKey
DispatchMessageA
IsWindowEnabled
GetClassNameA

ole32

OleUninitialize
CoRegisterClassObject
CoRegisterSurrogate
CoInitialize
OleInitialize

advapi32

GetUserNameA

kernel32

EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
FlushFileBuffers
CloseHandle
CreateFileW
HeapReAlloc
GetStringTypeW
LCMapStringW
MultiByteToWideChar
WriteConsoleW
SetStdHandle
HeapSize
RtlUnwind
IsValidCodePage
IsValidLocale
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocaleInfoW
LoadLibraryW
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
EnterCriticalSection
FatalAppExitA
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetOEMCP
IsProcessorFeaturePresent
QueryPerformanceCounter
CreateFileA
GetVolumeInformationA
GetSystemTime
OpenProcess
GetVersionExA
GetModuleHandleA
GetDateFormatA
SizeofResource
SetEvent
GetCurrentProcess
ExitProcess
WideCharToMultiByte
GetFileTime
GetModuleFileNameA
Sleep
LoadLibraryA
GetProcAddress
GetSystemInfo
GetProfileStringW
VirtualProtect
BeginUpdateResourceA
GetLastError
HeapFree
HeapAlloc
GetCommandLineA
HeapSetInformation
HeapCreate
HeapDestroy
GetModuleHandleW
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
EncodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetCurrentThread
GetTickCount

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1ea91d260c698fabbdccc1485860ed02

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

advapi32

kernel32

Sections

.text Size: 79KB - Virtual size: 79KB

.rdata Size: 112KB - Virtual size: 112KB

.data Size: 80KB - Virtual size: 324KB

.text
Size: 79KB - Virtual size: 79KB

.rdata
Size: 112KB - Virtual size: 112KB

.data
Size: 80KB - Virtual size: 324KB