5ff820442c2876d1d7b1461db8742bc890bf47399cef634a736867846b74dfb6

Sharing

Copy URL Twitter E-mail

General

Target

5ff820442c2876d1d7b1461db8742bc890bf47399cef634a736867846b74dfb6
Size

254KB
MD5

7782f7f7511775f108a7c76aa48ccb30
SHA1

680e450ed8becef666b4e5f3cf922a7108a17dd9
SHA256

5ff820442c2876d1d7b1461db8742bc890bf47399cef634a736867846b74dfb6
SHA512

c46cee29de17f5e9b8cdf8061092cb2aa4366ae1de70b339bcc48ca9f7622bcf6dea57f08724584ca78d49be71bd25908ee0bb3ec0558ca9373cbd0b750fe626
SSDEEP

1536:CaOFjOdMVxgfZqznpXYmkjXcjctAkCHY69m7VhEEKVk13cFZDOytgVZAvNAu:CaO9kM1pAjXMcikC46w7Vz20OZhgVOF

Score

N/A

Malware Config

Signatures

Files

5ff820442c2876d1d7b1461db8742bc890bf47399cef634a736867846b74dfb6
.exe windows x86

e5cb1c01a76847c22e38ea778a40c105

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
ReadFile
CreateThread
LocalAlloc
LoadLibraryA
HeapAlloc
CreateEventW
SetLastError
GetProcessHeap
GetModuleHandleA
GetCurrentThreadId
FreeLibrary
CloseHandle
InterlockedExchange
VirtualAlloc
GetVersionExA
GetModuleHandleW
lstrlenW
LoadLibraryW
InitializeCriticalSection
Sleep
UnhandledExceptionFilter
lstrlenA
GetModuleFileNameA
lstrcmpiW
InterlockedIncrement
GetSystemTimeAsFileTime
GetCurrentProcessId
HeapDestroy
InterlockedCompareExchange
MultiByteToWideChar
GetCurrentProcess
DisableThreadLibraryCalls
QueryPerformanceCounter

user32

SendMessageW
PostMessageW
PostQuitMessage
GetDesktopWindow
SendDlgItemMessageW
GetSysColor
SetTimer
SetWindowPos
SetDlgItemTextW
EndPaint
GetFocus
CreateWindowExW
KillTimer
EnableWindow
BeginPaint
SetCursor
InvalidateRect
SetWindowLongW
DialogBoxParamW
ShowWindow
IsWindow
DefWindowProcW
CharNextW
LoadStringW
LoadCursorW
DestroyWindow
GetWindowRect
GetClientRect
MessageBoxW
GetSystemMetrics
ReleaseDC
LoadIconW

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

244K0TM1
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

jC4GMG6i
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4Nr5IkQJ
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 140KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e5cb1c01a76847c22e38ea778a40c105

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 72KB - Virtual size: 72KB

244K0TM1 Size: 512B - Virtual size: 4KB

jC4GMG6i Size: 512B - Virtual size: 4KB

4Nr5IkQJ Size: 512B - Virtual size: 4KB

.rsrc Size: 140KB - Virtual size: 236KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 72KB - Virtual size: 72KB

244K0TM1
Size: 512B - Virtual size: 4KB

jC4GMG6i
Size: 512B - Virtual size: 4KB

4Nr5IkQJ
Size: 512B - Virtual size: 4KB

.rsrc
Size: 140KB - Virtual size: 236KB