33ae19e2aecb79c3fe1e7a15c591f2c93dc88b6237040db3949a3533edfb1ddf

Sharing

Copy URL Twitter E-mail

General

Target

33ae19e2aecb79c3fe1e7a15c591f2c93dc88b6237040db3949a3533edfb1ddf
Size

532KB
MD5

68689e410ad536c8ec844eb70b21b95a
SHA1

799f70d7f39780e4718daadf85dc774537f7e913
SHA256

33ae19e2aecb79c3fe1e7a15c591f2c93dc88b6237040db3949a3533edfb1ddf
SHA512

1574e78914ec73aaaafeb211d8aecc516d9a87033f0bb2fff30ad969ca09f0e037fee7452ab51624855d2a4c9300a9f865c0c908b46ba13b7542ca5c544188b0
SSDEEP

12288:K2G/hHrrwYiLc5uejX49dUc/S+zt9a9osP7dRj31:K22dr/iLFM499/S+ztloX7

Score

N/A

Malware Config

Signatures

Files

33ae19e2aecb79c3fe1e7a15c591f2c93dc88b6237040db3949a3533edfb1ddf
.exe windows x86

2b50e2b0642cb3668c3170bbefb29d57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
VirtualAlloc
Sleep
VirtualFree
FindResourceW
HeapCreate
IsValidCodePage
InterlockedExchange
GetVersion
GetACP
CloseHandle
ReadFile
SetFilePointer
MapViewOfFile
RaiseException
WideCharToMultiByte
LockResource
GetCurrentProcessId
SizeofResource
GlobalUnlock
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
GetSystemInfo
LCMapStringW
GetLastError
LeaveCriticalSection
CreateFileA
GetFileType
CreateEventA
GetProcAddress
CompareStringA
FindFirstFileA
GetProcessHeap
WaitForMultipleObjects
DeleteFileW
DeleteFileA
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
HeapFree
WriteConsoleW
InterlockedIncrement
GetCurrentThreadId
SetEndOfFile
VirtualQuery
TerminateProcess
SetUnhandledExceptionFilter
GetModuleHandleA
GetLocalTime
MultiByteToWideChar
InterlockedDecrement
GetModuleFileNameA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
SetLastError
FormatMessageA
TlsGetValue
FindClose
InitializeCriticalSection
FormatMessageW
LocalFree
FreeLibrary
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
GetCPInfo
lstrcmpiA
FreeEnvironmentStringsW
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
HeapDestroy
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetStdHandle
ExitProcess
GetCommandLineA
EnterCriticalSection
UnhandledExceptionFilter
GetEnvironmentStrings
GetEnvironmentStringsW
TlsSetValue
GetEnvironmentVariableA
RtlUnwind

user32

SetCursor
CallWindowProcA
InvalidateRect
IsWindowVisible
SystemParametersInfoA
GetSysColor
MessageBoxA
TrackPopupMenu
EndDialog
ReleaseCapture
GetWindowRect
DefWindowProcA
KillTimer
BeginPaint
DispatchMessageA
SetTimer
GetWindowLongA
EnableMenuItem
LoadStringA
GetWindow
EnableWindow
ShowWindow
GetParent
DestroyWindow
SendMessageA
ReleaseDC
GetCursorPos
GetDC
SetWindowPos
PostQuitMessage

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 500KB - Virtual size: 499KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b50e2b0642cb3668c3170bbefb29d57

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 24KB - Virtual size: 20KB

.data Size: 500KB - Virtual size: 499KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 24KB - Virtual size: 20KB

.data
Size: 500KB - Virtual size: 499KB

.rsrc
Size: 4KB - Virtual size: 2KB