d4450b9b33d3ec3cc46ed6f1625683ff9093c48fa084de8ae223952e807985ee

Sharing

Copy URL

Twitter E-mail

General

Target

d4450b9b33d3ec3cc46ed6f1625683ff9093c48fa084de8ae223952e807985ee
Size

844KB
MD5

56f0e7ff64b07cf89c52043347b74210
SHA1

66e48c3ab2b10016f1347e2183d88337bc2ab3e0
SHA256

d4450b9b33d3ec3cc46ed6f1625683ff9093c48fa084de8ae223952e807985ee
SHA512

b639b456e12b627d512c2931fc94ef6dd547e4159bbaa0604cbe0d1e0a89aaad634a23e0edfce90ae34554f7795e645507e9557194f05a1fecdbf83a417065f0
SSDEEP

12288:hHHYkBcnMRkzrEO7zYSRBbNbhoKCncnEdgelO2stTXjX+56g3yl:p8mQ7jRBbthoRcAflO3tTXT0xU

Score

N/A

Malware Config

Signatures

Files

d4450b9b33d3ec3cc46ed6f1625683ff9093c48fa084de8ae223952e807985ee
.exe windows x86

ccd44aa3a426402c40ca3c8b33da416a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugBreak
GetPrivateProfileIntW
GetPrivateProfileStringW
GetTempPathW
CloseHandle
Process32NextW
GetLastError
GetLongPathNameW
OpenProcess
Process32FirstW
CreateToolhelp32Snapshot
MoveFileExW
InitializeCriticalSection
FlushInstructionCache
GetCurrentProcess
DeleteCriticalSection
GetFileAttributesW
CreateFileW
DeleteFileW
SetFileAttributesW
WriteFile
CreateDirectoryW
EnterCriticalSection
LeaveCriticalSection
lstrlenA
MultiByteToWideChar
GetModuleFileNameW
GetModuleHandleW
GetCurrentProcessId
GetCurrentThreadId
GetProcAddress
LoadLibraryW
OutputDebugStringW
CreateProcessW
WritePrivateProfileStringW
FreeLibrary
Module32NextW
Module32FirstW
MapViewOfFile
CreateFileMappingW
lstrlenW
WideCharToMultiByte
UnmapViewOfFile
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
SetConsoleCtrlHandler
LoadLibraryA
GetStringTypeW
GetStringTypeA
SetStdHandle
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
IsBadCodePtr
SetUnhandledExceptionFilter
GetCommandLineA
GetCommandLineW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentDirectoryW
ReadFile
GetFileSize
WaitForMultipleObjects
CreateThread
WaitForSingleObject
SetFilePointer
FlushFileBuffers
FindClose
FindFirstFileW
FindNextFileW
RemoveDirectoryW
CreateEventW
SetEvent
ResetEvent
SetLastError
SetEndOfFile
VirtualAlloc
VirtualFree
Sleep
InterlockedExchange
RtlUnwind
InterlockedDecrement
InterlockedIncrement
HeapAlloc
HeapFree
GetFileAttributesA
GetModuleHandleA
GetStartupInfoW
GetVersion
ExitProcess
HeapReAlloc
MoveFileW
RaiseException
IsBadReadPtr
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
GetCurrentThread
FatalAppExitA
LCMapStringA
LCMapStringW
TerminateProcess
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
IsBadWritePtr
SetEnvironmentVariableA

user32

ClipCursor
SetCursor
TranslateMessage
DispatchMessageW
PostQuitMessage
MessageBoxW
GetWindowLongW
KillTimer
CreateWindowExW
IsWindow
PeekMessageW
SetWindowLongW
DestroyWindow
SendMessageW
GetMessageW

shell32

SHBrowseForFolderW
SHGetPathFromIDListW

psapi

GetModuleFileNameExW

shlwapi

PathIsDirectoryW
StrTrimW

rpcrt4

UuidCreate

Sections

.text
Size: 624KB - Virtual size: 620KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ccd44aa3a426402c40ca3c8b33da416a

Headers

File Characteristics

Imports

kernel32

user32

shell32

psapi

shlwapi

rpcrt4

Sections

.text Size: 624KB - Virtual size: 620KB

.rdata Size: 68KB - Virtual size: 64KB

.data Size: 36KB - Virtual size: 62KB

.rsrc Size: 112KB - Virtual size: 112KB

.text
Size: 624KB - Virtual size: 620KB

.rdata
Size: 68KB - Virtual size: 64KB

.data
Size: 36KB - Virtual size: 62KB

.rsrc
Size: 112KB - Virtual size: 112KB