d5938a6bef9b3ee5753d23f39b6af5e486051efcebf3eebd49437a3b0d9807f0

Sharing

Copy URL

Twitter E-mail

General

Target

d5938a6bef9b3ee5753d23f39b6af5e486051efcebf3eebd49437a3b0d9807f0
Size

212KB
MD5

1e040bae6655b1d83a15f91dfb75d37e
SHA1

b5fa27489549ca3da8f1be1f6430b461ef0499ea
SHA256

d5938a6bef9b3ee5753d23f39b6af5e486051efcebf3eebd49437a3b0d9807f0
SHA512

1563ad733f2f7166346628a04b1fd327a9564f87614898429f0269d69b9dc0454e4e887926e1bd144ed1d1169c5c1d76c8a9425e62ad98d3cf2f60674e7dd8f2
SSDEEP

3072:Na+8+ps0gWXQjok1zMhQuJQ5YYqFxSr5lxDSDADeak7dJHB/AdGn:Y+Ns2Uok1zMhvOY1rSRSsQLH5Ad0

Score

N/A

Malware Config

Signatures

Files

d5938a6bef9b3ee5753d23f39b6af5e486051efcebf3eebd49437a3b0d9807f0
.exe windows x86

f769adaef206a196c19898df24f0b31b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoA
GetSystemInfo
VirtualProtect
GetSystemTimeAsFileTime
GetCurrentProcessId
LCMapStringA
GetTickCount
QueryPerformanceCounter
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
GetCurrentDirectoryA
GetVersionExA
GetCurrentThreadId
WinExec
RtlUnwind
RaiseException
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetProcAddress
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
GetLastError
CloseHandle
TerminateProcess
GetCurrentProcess
ExitProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapFree
VirtualFree
HeapAlloc
HeapReAlloc
VirtualAlloc
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetFilePointer
SetConsoleCtrlHandler
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
IsBadCodePtr
VirtualQuery
InterlockedExchange
SetEndOfFile

user32

GetDlgItem
ShowWindow
GetWindowRect
OffsetRect
GetSystemMetrics
MoveWindow
SetWindowTextA
BeginPaint
EndPaint
EndDialog
LoadImageA
DialogBoxParamA

gdi32

CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetObjectA

Sections

.textbss
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f769adaef206a196c19898df24f0b31b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.textbss Size: - Virtual size: 64KB

.text Size: 128KB - Virtual size: 124KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 20KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 52KB - Virtual size: 49KB

.textbss
Size: - Virtual size: 64KB

.text
Size: 128KB - Virtual size: 124KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 20KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 52KB - Virtual size: 49KB