43fc4cc3c503424a708058dd3290feb0d46b9265bf2cd8059e119be07bbc2773

Sharing

Copy URL Twitter E-mail

General

Target

43fc4cc3c503424a708058dd3290feb0d46b9265bf2cd8059e119be07bbc2773
Size

335KB
MD5

58433cef04461993b42bce41ad89f2f0
SHA1

e7b6ce8a51c84116cc622356311556d76b84b5f1
SHA256

43fc4cc3c503424a708058dd3290feb0d46b9265bf2cd8059e119be07bbc2773
SHA512

0c5257066cc2542b9843919a5b303ac123cdd39a253e2b3d2863cbc504e0ab761b68dd4dc6d376b6197e91b27e24acdc929ddf84a8e5741f791a782ff31a4e88
SSDEEP

6144:R4z1YezUaJBBRQSZqebCHNgaEH68F0sGUdOmV06c:RY1YeguRQIqebisH1FClAK

Score

N/A

Malware Config

Signatures

Files

43fc4cc3c503424a708058dd3290feb0d46b9265bf2cd8059e119be07bbc2773
.exe windows x86

d0ea9e740ba7521f8b956ebaf5729c03

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oledlg

OleUIChangeIconW
OleUIPromptUserW
ord7
ord12
OleUIChangeSourceW

kernel32

GetEnvironmentStringsW
SetStdHandle
FindFirstChangeNotificationW
GetLongPathNameA
FindNextVolumeW
SetConsoleCursorInfo
GetBinaryTypeA
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
GetCommandLineA
HeapSetInformation
GetStartupInfoW
EnterCriticalSection
LeaveCriticalSection
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
GetLastError
HeapFree
CreateFileW
CloseHandle
HeapAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
SetHandleCount
GetFileType
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
Sleep
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
MultiByteToWideChar
WriteConsoleW
LoadLibraryW
HeapReAlloc
GetConsoleCP
FlushFileBuffers
LCMapStringW
GetStringTypeW
SetFilePointer
IsProcessorFeaturePresent
ReadFile
HeapSize

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 41B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 255KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0ea9e740ba7521f8b956ebaf5729c03

Headers

DLL Characteristics

File Characteristics

Imports

oledlg

kernel32

Sections

.text Size: 50KB - Virtual size: 49KB

.tls Size: 512B - Virtual size: 41B

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 10KB - Virtual size: 115KB

.rsrc Size: 255KB - Virtual size: 255KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 50KB - Virtual size: 49KB

.tls
Size: 512B - Virtual size: 41B

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 10KB - Virtual size: 115KB

.rsrc
Size: 255KB - Virtual size: 255KB

.reloc
Size: 5KB - Virtual size: 5KB