dcc38db028e11cb48f68eac6a601913f1f4b0519277e94cdb4be0719a582d474

Sharing

Copy URL Twitter E-mail

General

Target

dcc38db028e11cb48f68eac6a601913f1f4b0519277e94cdb4be0719a582d474
Size

284KB
MD5

90c230b840cf5cdcfdce3d5e66c67880
SHA1

4e378ac8fcaa55b6c11a64009f8f70f3b0bd2348
SHA256

dcc38db028e11cb48f68eac6a601913f1f4b0519277e94cdb4be0719a582d474
SHA512

bc1e1d8c678e2c225fb64203e281c6da4cae87acfa60e2cc5226320255dbddc10da549d9cdd5f868305334d3990efdaa90b2421108fe39011611d7c05fd8f14d
SSDEEP

6144:0blyPBM6qCJrBKmqMRYCYpmGq7DBLz7qoIe7:8lyPBMChYmqMRhSmGq7DBT

Score

N/A

Malware Config

Signatures

Files

dcc38db028e11cb48f68eac6a601913f1f4b0519277e94cdb4be0719a582d474
.exe windows x86

4e343efb63be5046a34fecefc338e03d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderLocation
SHChangeNotify
ShellExecuteA

gdi32

GetTextExtentPoint32A
GetTextMetricsW

user32

HideCaret

comctl32

ImageList_Add

kernel32

GetConsoleMode
VirtualAlloc
TlsAlloc
GetLongPathNameW
SetFilePointerEx
GlobalAlloc
GetUserDefaultLCID
GetExitCodeThread
WriteConsoleW
AddAtomA
FindFirstFileW
FindNextFileW
IsDebuggerPresent
WritePrivateProfileStringA
ExitProcess
VirtualProtect
DeleteFileA
CreateSemaphoreW
LoadLibraryExA
GetLocalTime
SetFileTime
FindClose
ResumeThread
GetFileAttributesA
CreateEventA
EnumResourceLanguagesA
GetSystemInfo
lstrcmpiA
lstrcatW
_lread
GetDriveTypeW
ReleaseSemaphore
CreateDirectoryW
FindNextFileA
CreateFileMappingA
GetExitCodeProcess
FileTimeToLocalFileTime
GetLocaleInfoW
GetCurrentThread
IsProcessorFeaturePresent
GetFileInformationByHandle
GetVersionExW
WriteProfileStringA
TransactNamedPipe
GetEnvironmentStrings
GetDriveTypeA
GetCurrentDirectoryW
GetSystemDirectoryW
FileTimeToSystemTime
EnumCalendarInfoA
SearchPathA
GetSystemTime
SetCurrentDirectoryA
CreateIoCompletionPort
HeapCreate
IsValidCodePage
InterlockedExchange
VirtualFree
DeleteTimerQueueEx
OpenMutexA
SystemTimeToTzSpecificLocalTime
_lopen
GetPrivateProfileStringA
GlobalLock
LoadResource
TlsGetValue
GetStringTypeA
GetPrivateProfileIntA
RemoveDirectoryW
GetPriorityClass
SetStdHandle
GetTickCount
TlsFree
GetTimeZoneInformation
FindFirstFileA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
GetProcAddress
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
SetLastError
GetLastError
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapFree
RtlUnwind
WriteFile
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW

Sections

.text
Size: 245KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e343efb63be5046a34fecefc338e03d

Headers

File Characteristics

Imports

shell32

gdi32

user32

comctl32

kernel32

Sections

.text Size: 245KB - Virtual size: 245KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 19KB - Virtual size: 20KB

.rsrc Size: 1024B - Virtual size: 616B

.text
Size: 245KB - Virtual size: 245KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 19KB - Virtual size: 20KB

.rsrc
Size: 1024B - Virtual size: 616B