2b645ae8c5ce3b01b0f5410c381a42daa26d8f682c5d60019e707e868f5e8c1e

Sharing

Copy URL Twitter E-mail

General

Target

2b645ae8c5ce3b01b0f5410c381a42daa26d8f682c5d60019e707e868f5e8c1e
Size

395KB
MD5

7bbdca54f35164549a5423c549a13ff1
SHA1

af69480879856b1ddd34f89c83f4d97bb7dd0a33
SHA256

2b645ae8c5ce3b01b0f5410c381a42daa26d8f682c5d60019e707e868f5e8c1e
SHA512

28fa51329094e8c36d2f7d1c1881177c056c1640da21971d0e2cf3715de05616cdd0747827f73d39c1e75cdf968c408ac22d9bf012e3df3bbd622f2b22259b57
SSDEEP

6144:ReE94FPz0lDqg3V0YMwebiM1ut1oWTiO1Vazac/ycLXY9zuyr691lFrXfp5WqAN:ReEO7UDqg3VxO31q1oPqc/tcQRR5Wl

Score

N/A

Malware Config

Signatures

Files

2b645ae8c5ce3b01b0f5410c381a42daa26d8f682c5d60019e707e868f5e8c1e
.exe windows x86

02ca12fe904ba00f30b7585a93057146

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LCMapStringW
GetStringTypeW
RtlUnwind
HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
GetConsoleMode
GetConsoleCP
SetFilePointer
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
HeapCreate
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
LoadLibraryW
SetStdHandle
WriteFile
InitializeCriticalSectionAndSpinCount
SetLastError
TlsFree
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
IsBadReadPtr
HeapValidate
IsProcessorFeaturePresent
IsDebuggerPresent
FlushFileBuffers
lstrcpyA
DeleteFileA
FileTimeToLocalFileTime
CloseHandle
FillConsoleOutputAttribute
GetModuleHandleA
FindNextFileA
GetConsoleScreenBufferInfo
LoadLibraryA
FindClose
GlobalFree
SetFileAttributesA
CopyFileA
BackupWrite
GetProcessHeaps
GetProcAddress
GetLastError
GetFullPathNameA
FindFirstFileA
GetStdHandle
CreateDirectoryA
MultiByteToWideChar
lstrcatA
EnumResourceLanguagesA
FileTimeToSystemTime
MulDiv
SetConsoleCursorPosition
GetFileAttributesA
Sleep
WaitForSingleObject
QueryPerformanceCounter
HeapAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EncodePointer
RaiseException
GetModuleFileNameW
GetStartupInfoW
HeapSetInformation
GetCommandLineA
ExitProcess
GetModuleHandleW
DecodePointer
CreateFileA
FillConsoleOutputCharacterA
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
CreateFileW

user32

GetDlgItemTextA
SetMenuItemInfoA
DestroyMenu
CallWindowProcA
SetClipboardData
UpdateWindow
GetDlgItemTextW
SetWindowTextA
GetSystemMetrics
OpenClipboard
GetMenuItemCount
GetMenuStringA
GetNextDlgTabItem
EndPaint
CloseClipboard
DestroyAcceleratorTable
GetWindowRect
PostQuitMessage
TrackPopupMenu
GetMenuItemID
GetSubMenu
CopyImage
GetFocus
LoadBitmapA
GetParent
LoadMenuA
wsprintfA
GetClientRect
SetFocus
SendMessageA
BeginPaint
SetScrollRange
GetDC
OffsetRect
SetRect
SetWindowLongA
UnionRect
InvalidateRect
SetScrollPos
ReleaseDC
EmptyClipboard
GetMenuState
GetDlgItem
EndDialog
DefWindowProcA
GetMenuItemInfoA

gdi32

MoveToEx
EndPage
BitBlt
PatBlt
GetTextExtentPoint32A
LineTo
StartPage
SetTextColor
DeleteDC
CreateFontA
CreateFontIndirectA
SetBkColor
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GdiSetBatchLimit
StartDocA
CreateRectRgn
GetTextExtentPointA
Escape
CreatePen
GetTextMetricsA
GetObjectA
TextOutW
EndDoc
GetStockObject
CreateSolidBrush
TextOutA
GetDeviceCaps

comdlg32

PrintDlgA
ChooseFontA

ole32

OleUninitialize
CoInitialize
OleFlushClipboard
OleInitialize
CreateStreamOnHGlobal
CoUnmarshalInterface

ws2_32

recv

userenv

GetProfilesDirectoryA

avifil32

AVIStreamCreate
AVIFileInit

version

GetFileVersionInfoW

Sections

.text
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.roba
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.corn
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rezus
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02ca12fe904ba00f30b7585a93057146

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

ws2_32

userenv

avifil32

version

Sections

.text Size: 204KB - Virtual size: 203KB

.rdata Size: 85KB - Virtual size: 84KB

.data Size: 4KB - Virtual size: 13KB

.roba Size: 7KB - Virtual size: 7KB

.corn Size: 39KB - Virtual size: 39KB

.rezus Size: 41KB - Virtual size: 41KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 204KB - Virtual size: 203KB

.rdata
Size: 85KB - Virtual size: 84KB

.data
Size: 4KB - Virtual size: 13KB

.roba
Size: 7KB - Virtual size: 7KB

.corn
Size: 39KB - Virtual size: 39KB

.rezus
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 12KB - Virtual size: 12KB