b2d1beec7edc57868b02e436553cbefe5ebf14e939329ecc27d0f6241bc090a4

Sharing

Copy URL Twitter E-mail

General

Target

b2d1beec7edc57868b02e436553cbefe5ebf14e939329ecc27d0f6241bc090a4
Size

142KB
MD5

c08a12585b11c5dd883752fb96a82007
SHA1

cf149b716028de25244a14b1e0fc110b5b52aa64
SHA256

b2d1beec7edc57868b02e436553cbefe5ebf14e939329ecc27d0f6241bc090a4
SHA512

6e971fa68ddd50ca74a76e2396a144c8543034ff7ba818c8a56bf0a2770a2cd423c3ce54e7ecc77a2a03113b2d4d860d0dda45aeab2248393152e435d39dc5c6
SSDEEP

1536:pmP+TT/C8cSqcX56Raa0tbMQtibU0LunIo34HrIeKWrXHG+z5qOd:oCG8tl9RobJSWrXHGq5q

Score

N/A

Malware Config

Signatures

Files

b2d1beec7edc57868b02e436553cbefe5ebf14e939329ecc27d0f6241bc090a4
.exe windows x86

4a5c8a52006e014cf9d754f462d2688e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

DeleteUrlCacheEntryA

urlmon

URLDownloadToFileA

comctl32

ord17

kernel32

CreateDirectoryA
GetCurrentDirectoryA
GetFullPathNameA
GetModuleFileNameA
OutputDebugStringA
Sleep
WaitForSingleObject
CloseHandle
CreateThread
CreateFileA
GetTickCount
WriteFile
ReadFile
GetLastError
GetDriveTypeA
FlushFileBuffers
GetLocalTime
DeviceIoControl
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetProcessHeap
SetEndOfFile
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
WriteConsoleW
GetConsoleOutputCP
GetFileAttributesA
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteFileA
GetCommandLineA
GetStartupInfoA
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapSize
ExitProcess
RaiseException
RtlUnwind
MultiByteToWideChar
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
GetStdHandle
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
SetHandleCount
GetFileType
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryA
InitializeCriticalSectionAndSpinCount
SetStdHandle
WriteConsoleA
GetModuleHandleA

user32

UpdateWindow
EnableWindow
DestroyWindow
GetWindowInfo
SetWindowTextA
SystemParametersInfoA
DialogBoxParamA
MoveWindow
PostMessageA
GetDlgItem
SendMessageA
EndDialog

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a5c8a52006e014cf9d754f462d2688e

Headers

DLL Characteristics

File Characteristics

Imports

wininet

urlmon

comctl32

kernel32

user32

Sections

.text Size: 83KB - Virtual size: 82KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 5KB - Virtual size: 6.0MB

.rsrc Size: 15KB - Virtual size: 15KB

.reloc Size: 23KB - Virtual size: 22KB

.text
Size: 83KB - Virtual size: 82KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 5KB - Virtual size: 6.0MB

.rsrc
Size: 15KB - Virtual size: 15KB

.reloc
Size: 23KB - Virtual size: 22KB