41e0746d5f13414a131543e5507a96687fbfcce98b50ed56453a4a802da3eaee

Sharing

Copy URL Twitter E-mail

General

Target

41e0746d5f13414a131543e5507a96687fbfcce98b50ed56453a4a802da3eaee
Size

720KB
MD5

91a8cdbd1b7b25edce4059611b2837f0
SHA1

0a8843a572b63d3b8b026990c2c038cb0e010270
SHA256

41e0746d5f13414a131543e5507a96687fbfcce98b50ed56453a4a802da3eaee
SHA512

b9798f6bac82245429058c42fa38005bb83afc5451b9f33a27916d3f331d9fb5934250bd99177405ee701c7915314e8b63604e0eaf371634037d0a4b34d73df6
SSDEEP

12288:aviiRYG8wKRQu2Fww8thNu9SWNMN/JWLs2Ez31DIoAXycpJGfl:a6iOvRQRp8V2S0MbWo24lkoSw

Score

N/A

Malware Config

Signatures

Files

41e0746d5f13414a131543e5507a96687fbfcce98b50ed56453a4a802da3eaee
.exe windows x86

3492a7a37dd69954f8f4580079a9e7ba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreatePipe
FreeEnvironmentStringsW
GetTempFileNameW
lstrcatA
GetModuleFileNameA
EnumResourceTypesA
FileTimeToSystemTime
EnumDateFormatsExW
EnumResourceLanguagesW
SetFileAttributesA
GetVersionExA
IsBadWritePtr
LocalCompact
CreateJobObjectA
lstrcatW
GlobalUnlock
GetProcessTimes
FindAtomA
GetPrivateProfileStructA
FindNextVolumeW
_llseek
FindNextVolumeMountPointA
GetSystemWindowsDirectoryW
SetFileApisToOEM
FindResourceA
SizeofResource
CreateSemaphoreA
GetModuleHandleA
EnumResourceTypesW
GetLocaleInfoW
Process32First
CreateJobObjectW
GetEnvironmentVariableW
SetSystemTime
WaitForDebugEvent
CreateWaitableTimerA
IsDBCSLeadByteEx
CreateMailslotA
CreateNamedPipeA
GetStringTypeW
CreateHardLinkA
SetMailslotInfo
SetFileAttributesW
FileTimeToDosDateTime
GetSystemDefaultLangID
GetProcessShutdownParameters
CreateIoCompletionPort
GetCurrentThreadId
CreateTimerQueueTimer
InterlockedExchangeAdd
ConnectNamedPipe
CreateWaitableTimerW
CreateDirectoryExW
GlobalDeleteAtom
LocalAlloc
LocalFree
CompareStringW
GlobalGetAtomNameW
GlobalAddAtomA
EnumTimeFormatsA
SetEnvironmentVariableW
RequestWakeupLatency
GetFileAttributesExW
GetCalendarInfoA
WriteFileGather
IsBadStringPtrA
EnumUILanguagesA
FileTimeToLocalFileTime
WaitNamedPipeA
LocalReAlloc
DosDateTimeToFileTime
GetQueuedCompletionStatus
UpdateResourceW
WriteProfileSectionA
GetSystemTimeAsFileTime
SetTapePosition
FreeResource
InterlockedExchange
DeleteVolumeMountPointA
SetTimeZoneInformation
SetCalendarInfoA
GetDefaultCommConfigA
EnumSystemLanguageGroupsW
DebugBreak
GetAtomNameA
Process32NextW
GetThreadTimes
SetProcessWorkingSetSize
GetThreadPriorityBoost
SetTapeParameters
BackupWrite
OpenEventW
FatalExit
QueueUserAPC
lstrcmpW
FormatMessageW
GetCurrencyFormatW
GlobalWire
GetCommMask
SetEvent
GetTempFileNameA
CreateFileMappingA
AssignProcessToJobObject
BindIoCompletionCallback

user32

ActivateKeyboardLayout
MessageBoxW
SetLayeredWindowAttributes
SetKeyboardState
OpenInputDesktop
IntersectRect
HideCaret
DrawCaption
MessageBoxIndirectW
AttachThreadInput
CharLowerBuffW
IsRectEmpty
DrawAnimatedRects
GetSysColor
PtInRect
GetKeyboardLayout
GetMessageA
ToUnicode
GetFocus
GetDoubleClickTime

shlwapi

PathAppendA
PathCombineA

Sections

.text
Size: 214KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 287KB - Virtual size: 671KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 213KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3492a7a37dd69954f8f4580079a9e7ba

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

Sections

.text Size: 214KB - Virtual size: 214KB

.data Size: 287KB - Virtual size: 671KB

.rdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 213KB - Virtual size: 213KB

.text
Size: 214KB - Virtual size: 214KB

.data
Size: 287KB - Virtual size: 671KB

.rdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 213KB - Virtual size: 213KB