391fe10f5041622a596ee0d10f4fea70df099e2ff5461cccf2796214f0115ee7

Sharing

Copy URL Twitter E-mail

General

Target

391fe10f5041622a596ee0d10f4fea70df099e2ff5461cccf2796214f0115ee7
Size

572KB
MD5

6b4bc4a181efee24d2ab28514c8e80a9
SHA1

dce7490c2a069e39f2f61dd4833d563e819820b5
SHA256

391fe10f5041622a596ee0d10f4fea70df099e2ff5461cccf2796214f0115ee7
SHA512

ca935991d6327c92117871c25247db8e895e0c3ad1454a10dc148d48dbc8649f9ae115557d49912991045415ed3e84799742b3313e69d03b98b9742f7a400dd1
SSDEEP

12288:Ms/TrPoAltPjIrt0S/7GHqExgArQgWQguX+oeI188CLDVyjo:Ms/Pnl1mwqExxaoL1PC/N

Score

N/A

Malware Config

Signatures

Files

391fe10f5041622a596ee0d10f4fea70df099e2ff5461cccf2796214f0115ee7
.exe windows x86

e78e09f5f823b7b4f3c9f4e8872e5cd0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject

user32

DispatchMessageA
GetDC
SendMessageA
ClientToScreen
GetActiveWindow
DestroyWindow
GetMessageA
GetParent
UpdateWindow
ShowWindow
EnableWindow
TranslateMessage
LoadStringA
IsIconic
GetWindowLongA
FillRect
IsWindow
PeekMessageA
DefWindowProcA
GetSystemMetrics
PostMessageA
EndDialog
GetDlgItem
ScreenToClient
TrackPopupMenu
GetDesktopWindow
MessageBoxA
GetSysColor
SystemParametersInfoA
IsWindowVisible
InvalidateRect
wsprintfA
SetCursor
PostQuitMessage
SetFocus

kernel32

GetStdHandle
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
GetDriveTypeA
HeapDestroy
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
LocalAlloc
SetErrorMode
SetStdHandle
GetCPInfo
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
SetFileAttributesA
SetEvent
LocalFree
InitializeCriticalSection
LoadResource
FindClose
InterlockedDecrement
FormatMessageA
SetLastError
GetModuleFileNameW
IsDebuggerPresent
GetCurrentThread
GetModuleHandleA
GetTickCount
GetVersion
GetCurrentProcessId
GetCommandLineA
GetCurrentThreadId
ExitProcess
GetLastError
HeapAlloc
GetProcessHeap
GetOEMCP
VirtualAlloc
FindResourceA
Sleep
VirtualFree
FindResourceW
UnmapViewOfFile
WideCharToMultiByte
SizeofResource
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
CompareStringA
RaiseException
InterlockedCompareExchange
HeapSize
GetCurrentDirectoryA
LockResource
GetEnvironmentStrings
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
HeapCreate
LCMapStringW
LoadLibraryExW
InterlockedIncrement
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
GlobalLock
WaitForMultipleObjects
FindFirstFileW
ResetEvent
FindFirstFileA
CompareStringW
GetProcAddress
DeleteFileW
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
SetEndOfFile
GetConsoleMode
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
CreateMutexA
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers

advapi32

RegCloseKey
RegQueryValueExW

msvcrt

_controlfp
exit

Sections

.text
Size: 545KB - Virtual size: 868KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e78e09f5f823b7b4f3c9f4e8872e5cd0

Headers

File Characteristics

Imports

gdi32

user32

kernel32

advapi32

msvcrt

Sections

.text Size: 545KB - Virtual size: 868KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 545KB - Virtual size: 868KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 11KB - Virtual size: 10KB