19ee9c8f1e63a6a0d500b5a2e3867caff68c111beafbf59fd2f89eced540bb56

General

Target

19ee9c8f1e63a6a0d500b5a2e3867caff68c111beafbf59fd2f89eced540bb56
Size

352KB
MD5

6822b1cc5bd8d0b1b6faabf61eed4e30
SHA1

cdd2bc25a81b3204316913c802bc3b0236ce5e27
SHA256

19ee9c8f1e63a6a0d500b5a2e3867caff68c111beafbf59fd2f89eced540bb56
SHA512

a836867c3eea38f0b3a5d59bea28c883cea070b14cdf6a6951bb4110aeab1db70369c2aa8fc7bbdeee7559c8d9269a699d4d60b282579a0a13da630be070937f
SSDEEP

6144:iGoa7vKNqQrnxBesiKXDeBjH4z2+70g8:iXa7vmrnxUJKXkH4L0V

Score

N/A

Malware Config

Signatures

Files

19ee9c8f1e63a6a0d500b5a2e3867caff68c111beafbf59fd2f89eced540bb56
.exe windows x86

5219d2cd4fc1df27f833eb6e00173ad6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageA
CloseClipboard
EndDialog
OffsetRect
ReleaseCapture
LoadIconA
GetWindowTextLengthA
RegisterClassExA
ClientToScreen
FrameRect
SystemParametersInfoA
SetWindowsHookExA

kernel32

IsBadWritePtr
LoadLibraryA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
IsBadCodePtr
RemoveDirectoryA
TlsGetValue
TlsAlloc
PrepareTape
VirtualProtectEx
GetLogicalDriveStringsA
HeapReAlloc
HeapAlloc
RtlUnwind
RaiseException
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
GetLastError
LCMapStringW
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
GetProcAddress
HeapFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapSize
VirtualProtect
GetSystemInfo
VirtualQuery
GetLocaleInfoA
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP
InitializeCriticalSection
InterlockedExchange
IsBadReadPtr

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5219d2cd4fc1df27f833eb6e00173ad6

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 32KB - Virtual size: 28KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 152KB - Virtual size: 152KB

.rsrc Size: 120KB - Virtual size: 118KB

.text
Size: 32KB - Virtual size: 28KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 152KB - Virtual size: 152KB

.rsrc
Size: 120KB - Virtual size: 118KB