8c4a22f48726a955f88f52a56ce34a5e3ea82e36d641cc7cc1c0dd097845cb5e

Sharing

Copy URL Twitter E-mail

General

Target

8c4a22f48726a955f88f52a56ce34a5e3ea82e36d641cc7cc1c0dd097845cb5e
Size

299KB
MD5

3afec8ce8d988162c77f47f769f657b8
SHA1

5bef1b2ce5ef119884381f7bcff7860b60dcc048
SHA256

8c4a22f48726a955f88f52a56ce34a5e3ea82e36d641cc7cc1c0dd097845cb5e
SHA512

b6af0eed4ec7b17edf2ec0b79bcc89a0e923a3ef88b7ccab63ed661cd9f8fa2774d385dbc84c858295e2733306848662e60b79356223d8d98d1c11aae9bb9e0c
SSDEEP

6144:AuCeBGw82i4MaCqCGlGfr/9t7HVJrmxF3eTd6fWqiog1Mp1JJ52Q5kd:OeBGv2i4MtBGlGbP7HViYTuioec2oY

Score

N/A

Malware Config

Signatures

Files

8c4a22f48726a955f88f52a56ce34a5e3ea82e36d641cc7cc1c0dd097845cb5e
.exe windows x86

cbc1ee7a8473e7a9c593f5008bb54f1f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP

Imports

kernel32

RtlUnwind
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
CreateFileMappingA
InterlockedDecrement
GetCurrentThreadId
LoadLibraryW
HeapSize
CreateSemaphoreA
HeapReAlloc
GetConsoleCP
GetConsoleMode
FlushFileBuffers
LCMapStringW
GetStringTypeW
SetFilePointer
WriteConsoleW
SetStdHandle
CreateFileW
Sleep
GetLastError
FindResourceA
LoadResource
SizeofResource
LockResource
RaiseException
WaitForSingleObject
MapViewOfFile
ReleaseSemaphore
OpenProcess
CloseHandle
GetProcessHeap
HeapAlloc
HeapCreate
MultiByteToWideChar
GetStartupInfoA
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetModuleHandleA
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetCommandLineA
HeapSetInformation
GetStartupInfoW
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
EnterCriticalSection
LeaveCriticalSection
DecodePointer
EncodePointer
GetProcAddress
GetModuleHandleW

user32

GetLastActivePopup
GetSysColor
GetWindowWord
GetClientRect
GetDC
LoadCursorA
LoadIconA
GetForegroundWindow
SendMessageA
GetDlgItem
ShowWindow
SendDlgItemMessageA
CreateWindowExA
SetTimer
KillTimer
DefWindowProcA
GetSystemMetrics
SetWindowLongA
GetSubMenu
SetMenuItemInfoA
GetParent
GetMenu
GetUserObjectSecurity
SetUserObjectSecurity
OffsetRect
FindWindowA
GetWindowTextA
FindWindowExA
SetActiveWindow
FillRect
DrawIcon
DestroyIcon

gdi32

CreateCompatibleDC
SelectObject
GetObjectA
CreateBitmap
StretchBlt
DeleteDC
GetDeviceCaps
CreateCompatibleBitmap
BitBlt
DeleteObject
Rectangle
MoveToEx
LineTo
SaveDC
SetWindowExtEx
Ellipse
SetTextAlign
RestoreDC
EnumFontsA
ChoosePixelFormat
SetTextColor
SetBkColor
GetStockObject

comdlg32

GetSaveFileNameA

advapi32

InitializeAcl
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
GetSecurityDescriptorDacl
GetAclInformation
AddAccessAllowedAce
GetAce
AddAce
AddAccessAllowedAceEx

shell32

SHGetDesktopFolder

psapi

GetModuleFileNameExA

winmm

mmioClose
mmioOpenA
mmioStringToFOURCCA
mmioDescend
mmioAscend
mmioRead

comctl32

ord17
ord6

pdh

PdhAddCounterA
PdhOpenQueryA
PdhOpenLogA
PdhUpdateLogA

rpcrt4

UuidCreateSequential

tapi32

lineSetTollListA

Exports

Exports

In

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 239KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tor
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cbc1ee7a8473e7a9c593f5008bb54f1f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

psapi

winmm

comctl32

pdh

rpcrt4

tapi32

Exports

Exports

Sections

.text Size: 42KB - Virtual size: 42KB

.rdata Size: 239KB - Virtual size: 239KB

.data Size: 4KB - Virtual size: 11KB

.tor Size: 10KB - Virtual size: 9KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 42KB - Virtual size: 42KB

.rdata
Size: 239KB - Virtual size: 239KB

.data
Size: 4KB - Virtual size: 11KB

.tor
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 2KB - Virtual size: 1KB