9e41fa9d0956d5218c0c6e27d2ca96a9d6ab438f4035ee1d4471235102917dbb

General

Target

9e41fa9d0956d5218c0c6e27d2ca96a9d6ab438f4035ee1d4471235102917dbb
Size

139KB
MD5

9151b64d9d933828fd994949af68ef70
SHA1

5bcfc41ae41331937654070f6b15eec3375c29a6
SHA256

9e41fa9d0956d5218c0c6e27d2ca96a9d6ab438f4035ee1d4471235102917dbb
SHA512

1954f5f1372e39e15cc5f9fe2f3a3e82f9d2d6cd7aa14d27b4fac672b9b845dae9a061f2d6c785ab62b97d8016f3c4c8142700684e0fbdfc3c62c9a8a44b3579
SSDEEP

3072:VV5x8EhMxQ6ATcvB9E7lAWxlxVnt6ahH43xeJVsvS0LnplAk/KnTA:p6ZLJiuWxRtfHnUDK

Score

N/A

Malware Config

Signatures

Files

9e41fa9d0956d5218c0c6e27d2ca96a9d6ab438f4035ee1d4471235102917dbb
.exe windows x86

adf35aa000993149796be8788514e094

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
TranslateMessage
ShowWindow
SetWindowPos
RegisterClassExW
PostQuitMessage
OffsetRect
LoadCursorW
IsRectEmpty
IntersectRect
GetWindowRect
GetWindowLongW
GetMessageW
GetDesktopWindow
GetClassNameW
EnumWindows
EnumDisplayDevicesW
DispatchMessageW
DefWindowProcW
CreateWindowExW

kernel32

GetOEMCP
lstrcmpW
WriteFile
WideCharToMultiByte
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
Sleep
SetUnhandledExceptionFilter
SetLastError
SetHandleCount
RtlUnwind
QueryPerformanceCounter
OutputDebugStringW
LCMapStringW
LCMapStringA
CloseHandle
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeEnvironmentStringsW
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStartupInfoA
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedIncrement
IsDebuggerPresent
IsValidCodePage

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adf35aa000993149796be8788514e094

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 18KB - Virtual size: 19KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 18KB - Virtual size: 19KB

.rsrc
Size: 15KB - Virtual size: 15KB