5c6145967c1c02b79417a20d89e1f1cb2512b3c32146b157daa85d890fdd6480

Sharing

Copy URL

Twitter E-mail

General

Target

5c6145967c1c02b79417a20d89e1f1cb2512b3c32146b157daa85d890fdd6480
Size

268KB
MD5

79192fece96c5a8d27fab720eb5e6bd3
SHA1

339b0aceeab3f55247c96e5ab4af28e491ae25f1
SHA256

5c6145967c1c02b79417a20d89e1f1cb2512b3c32146b157daa85d890fdd6480
SHA512

42ee980a0d2c4066c7bd049749490e414caaf59e655741ba6fb49b14805df43b06fb0fc157df7f0c76e7c3f67ae915f8dbbb77938ff932c4af7d69828bb1a69d
SSDEEP

3072:gr0tgXV393wq7d9M5zDxvNiWVoEgYqY5QOssNnh3:htgXV3iSd9M5BvNi+5lXX3

Score

N/A

Malware Config

Signatures

Files

5c6145967c1c02b79417a20d89e1f1cb2512b3c32146b157daa85d890fdd6480
.exe windows x86

028fd858c366c091998c863b40cb6931

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateProcessA
LCMapStringA
SetEndOfFile
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
SetUnhandledExceptionFilter
CreateFileA
SetFilePointer
SetConsoleCtrlHandler
FlushFileBuffers
SetStdHandle
VirtualAlloc
HeapReAlloc
HeapAlloc
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
IsBadWritePtr
IsBadReadPtr
HeapValidate
CloseHandle
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
GetProcAddress
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
ReadFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
LCMapStringW

user32

LoadAcceleratorsA
LoadStringA
RegisterClassExA
LoadCursorA
LoadIconA
UpdateWindow
ShowWindow
CreateWindowExA
GetSystemMetrics
PostQuitMessage
EndPaint
GetClientRect
EndDialog
DialogBoxParamA
DestroyWindow
DefWindowProcA
BeginPaint

gdiplus

GdiplusShutdown
GdiplusStartup
GdipAlloc
GdipCreateFromHDC
GdipDeleteGraphics
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipFree
GdipDisposeImage
GdipCloneImage
GdipDrawImageI

Sections

.text
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

028fd858c366c091998c863b40cb6931

Headers

File Characteristics

Imports

kernel32

user32

gdiplus

Sections

.text Size: 152KB - Virtual size: 151KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 22KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 76KB - Virtual size: 73KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 152KB - Virtual size: 151KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 22KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 76KB - Virtual size: 73KB

.reloc
Size: 8KB - Virtual size: 4KB