e354e1b8a0bd45f2f92c087cb15f6ff89a05ed4ea585508b15e1a1ffc83bb455

Sharing

Copy URL Twitter E-mail

General

Target

e354e1b8a0bd45f2f92c087cb15f6ff89a05ed4ea585508b15e1a1ffc83bb455
Size

48KB
MD5

80a465e98280c6b32c3e124226d959a1
SHA1

fd5e7f19e873e74f1ab8177f855f3ee7c2c13216
SHA256

e354e1b8a0bd45f2f92c087cb15f6ff89a05ed4ea585508b15e1a1ffc83bb455
SHA512

9bbac97de854d8b1ba10d1a2251734ec63ac42c78a9d7958cbf4db4ad979438e922f8973749c25faa77075d69f442643b6daba3552bc158c85d82d179734190a
SSDEEP

768:CY9Ar/MKdW13HRsfLHg6fiC2uyrLDNH9+u0mviTzhdoF9l:tur/M24HOLg6KC2uhGiTzhm

Score

N/A

Malware Config

Signatures

Files

e354e1b8a0bd45f2f92c087cb15f6ff89a05ed4ea585508b15e1a1ffc83bb455
.exe windows x86

e4faef5e57d9e36f06666370ae180b0c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_except_handler3
_wcmdln
exit
_cexit
_XcptFilter
_exit
_c_exit
_controlfp
__wgetmainargs
malloc
free
realloc
??2@YAPAXI@Z
_purecall
??3@YAXPAX@Z

advapi32

RegSetValueExW
RegEnumKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW

kernel32

UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCommandLineW
SetUnhandledExceptionFilter
Sleep
GetShortPathNameW
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
GetModuleHandleA
GetStartupInfoW
FreeLibrary
GetProcAddress
GetModuleFileNameW
LoadLibraryW
CreateThread
CreateEventW
GetCurrentThreadId
GetLastError
SetPriorityClass
GetCurrentProcess
MultiByteToWideChar
lstrlenW
lstrcpyW
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
lstrcpynW
HeapDestroy
lstrcatW
WaitForSingleObject
SetEvent
CloseHandle
lstrlenA

user32

PostThreadMessageW
GetMessageW
DispatchMessageW
CharNextW

ole32

CoUninitialize
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoRegisterClassObject
CoRevokeClassObject
CoCreateInstance
CoTaskMemRealloc

oleaut32

SysAllocString
VarUI4FromStr
LoadTypeLi
RegisterTypeLi
SysFreeString

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e4faef5e57d9e36f06666370ae180b0c

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

user32

ole32

oleaut32

Sections

.text Size: 16KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 380B

.rsrc Size: 4KB - Virtual size: 2KB

.cdata Size: 20KB - Virtual size: 20KB

.text
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 380B

.rsrc
Size: 4KB - Virtual size: 2KB

.cdata
Size: 20KB - Virtual size: 20KB