9881ae077d53942097794d7c671a7dd6bcb6ccd7d73f543adc81509dd9769f41

Sharing

Copy URL

Twitter E-mail

General

Target

9881ae077d53942097794d7c671a7dd6bcb6ccd7d73f543adc81509dd9769f41
Size

668KB
MD5

4d75960994b54f4496e46d6afef95aae
SHA1

64021043511f18ab9c4046e63657767e3c3a963b
SHA256

9881ae077d53942097794d7c671a7dd6bcb6ccd7d73f543adc81509dd9769f41
SHA512

15ced4eec1e669b72cde4ee546454db937a19a41d64846b4e2d19257d195d737e4985db8bc2b2ae22c36a685c855b7bb89dac822908c5655862d267ff992c0dd
SSDEEP

12288:u+VyrKi4OsDp8zoYrjPbMO6DA5zO4F3lcb5V2Er1:PVymiTs6MOjGDwzX3ub5lr1

Score

N/A

Malware Config

Signatures

Files

9881ae077d53942097794d7c671a7dd6bcb6ccd7d73f543adc81509dd9769f41
.exe windows x86

4ad9fdeab116388f6bcea6d841db1621

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexA
CreateEventA
GetTickCount
LoadLibraryA
VirtualAlloc
LoadResource
FindResourceA
CreateThread
FreeLibrary
lstrcpyA
_lclose
OpenFile
GetCurrentDirectoryA
_lwrite
_lread
GetLastError
MulDiv
LockResource
Sleep
GetStringTypeA
GetProcAddress
GetShortPathNameA
GetACP
GetCPInfo
HeapReAlloc
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetStringTypeW
GetCurrentProcess
OpenEventA
GetBinaryTypeA
CreateMutexA
OpenSemaphoreA
CreateSemaphoreA
GetOEMCP
GetModuleHandleA
TerminateProcess
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapAlloc

user32

SetTimer
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
MoveWindow
SendMessageA
MessageBoxA
SetWindowTextA
GetDC
ReleaseDC
DestroyWindow
PostQuitMessage
GetClientRect
PostMessageA
SetFocus
DefWindowProcA
wsprintfA
FindWindowA
LoadImageA
LoadCursorA
RegisterClassExA
RegisterClassA
CreateWindowExA

gdi32

StartDocA
DeleteDC
StartPage
EndPage
EndDoc
GetDeviceCaps

comdlg32

GetSaveFileNameA
GetOpenFileNameA
PrintDlgA
ChooseFontA

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 500KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4ad9fdeab116388f6bcea6d841db1621

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 100KB - Virtual size: 100KB

.rsrc Size: 28KB - Virtual size: 27KB

.vmp0 Size: 500KB - Virtual size: 1.6MB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 100KB - Virtual size: 100KB

.rsrc
Size: 28KB - Virtual size: 27KB

.vmp0
Size: 500KB - Virtual size: 1.6MB