dce69cf36892d347998bc8f76acccbdfb337a07bfc55be2d9afbc3766a90c460

Sharing

Copy URL Twitter E-mail

General

Target

dce69cf36892d347998bc8f76acccbdfb337a07bfc55be2d9afbc3766a90c460
Size

82KB
MD5

7b165d2e05a7db3a35f3a53c0b91e600
SHA1

b4bbf7d84396641eb94f5e6fa74f6cd0b678c880
SHA256

dce69cf36892d347998bc8f76acccbdfb337a07bfc55be2d9afbc3766a90c460
SHA512

1110bfdd6d7ada931f3753ac9bfb2d48c89aac994a0a8a04f581bf660d0be6b57a6c5c1918c6b7537fbb6f6476d93402fa74afd4e8e846f6f712c67b6cfa03a3
SSDEEP

1536:h/xZLpAncqdhdZAeMSSVIbVJgncq+k3Wh2Q4ghfe/b3s3+EttvLaPXFr:h5Z9KcAJbVJO+k3WUs1e/7s3+ClOXFr

Score

N/A

Malware Config

Signatures

Files

dce69cf36892d347998bc8f76acccbdfb337a07bfc55be2d9afbc3766a90c460
.exe windows x86

eb82049d1a0ca7db70160f0dca99ca37

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
GlobalAddAtomA
ExitProcess
GetProcAddress
LoadLibraryA
FreeLibrary
VirtualFree
Sleep
GetProcessHeap
GetStringTypeA
LockResource
HeapDestroy
HeapAlloc
DeleteCriticalSection
GlobalDeleteAtom
GetUserDefaultLCID
GetCPInfo
LoadResource
GetStartupInfoA
GetEnvironmentStrings
VirtualAlloc
FreeResource
CreateThread
GetCurrentProcessId

version

VerInstallFileA
VerFindFileA
GetFileVersionInfoA

user32

GetTopWindow
CharUpperBuffA
AdjustWindowRectEx
CharLowerA
MsgWaitForMultipleObjects
EmptyClipboard
DefFrameProcA
GetScrollPos
ActivateKeyboardLayout
SystemParametersInfoA
DrawIconEx
DrawIcon
EnableWindow
CheckMenuItem
IsWindowVisible
DrawTextA
RegisterClassA
GetMenuItemInfoA
GetClientRect
SetTimer
IsDialogMessageA
IsWindowUnicode
GetMenu
GetLastActivePopup
RegisterClipboardFormatA
InflateRect
ReleaseCapture
DrawFrameControl
GetClassInfoA
CallWindowProcA
IsWindowEnabled
CreatePopupMenu
DeleteMenu
IsZoomed
PostMessageA
TrackPopupMenu
GetSystemMetrics
SetMenuItemInfoA
LoadKeyboardLayoutA
BeginPaint
LoadIconA
ScreenToClient
GetWindowPlacement
RedrawWindow
MoveWindow
PostQuitMessage
TranslateMessage
ScrollWindow
DestroyCursor
PtInRect
SetCursor
IsCharLowerA
UpdateWindow
MapWindowPoints
SetCapture
RegisterWindowMessageA
GetClassNameA
FrameRect
DefMDIChildProcA
GetWindow
EnumChildWindows
GetIconInfo
IntersectRect
ReleaseDC

Exports

Exports

_0J385HWGuAmxKo@12
uUSf7xAmz@16

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb82049d1a0ca7db70160f0dca99ca37

Headers

File Characteristics

Imports

kernel32

version

user32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 12KB - Virtual size: 36KB

.edata Size: 47KB - Virtual size: 47KB

.adata Size: 1024B - Virtual size: 864B

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 12KB - Virtual size: 36KB

.edata
Size: 47KB - Virtual size: 47KB

.adata
Size: 1024B - Virtual size: 864B

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 8KB - Virtual size: 8KB