412b0c41bfb5c831264a4cf3997f0f65c44cef2412bf6a305b6e8949cb2a2c57

Sharing

Copy URL Twitter E-mail

General

Target

412b0c41bfb5c831264a4cf3997f0f65c44cef2412bf6a305b6e8949cb2a2c57
Size

142KB
MD5

45ac81102e6375f22322531dbdc6e315
SHA1

5f38bafe43da9e5710b229ca7e6758e3eb1378a9
SHA256

412b0c41bfb5c831264a4cf3997f0f65c44cef2412bf6a305b6e8949cb2a2c57
SHA512

5a5ed0434f946e44ac83870ae6bb9680b68a4d7d290d66bd55e898a939fa3c1da41adee0540cbe84824115d65d34f9b405400827ec2485b1e8c4734604f94b76
SSDEEP

3072:dS6o+9NegvnEEzEO2ppmj2I3trQxqihPFwbn6yZggubL7cLo:drNHfEnFpp69rQlzshea

Score

N/A

Malware Config

Signatures

Files

412b0c41bfb5c831264a4cf3997f0f65c44cef2412bf6a305b6e8949cb2a2c57
.exe windows x86

3d5a6205a2a40363836c1266ff36cd67

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
DeleteCriticalSection
SizeofResource
GetFileAttributesW
GetCurrentThreadId
ExitProcess
GetCommandLineA
GetModuleHandleW
GetSystemTimeAsFileTime
CreateEventW
FindResourceW
SetEvent
IsBadWritePtr
CreateProcessA
InitializeCriticalSectionAndSpinCount
ReleaseSemaphore
Sleep
GetVersion
GetDriveTypeW
GetOEMCP
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
OpenEventW
FreeEnvironmentStringsA
InterlockedIncrement
GetFullPathNameW
FindResourceA
GetACP
GetFileSize
GetLastError
GetTickCount
VirtualAlloc
GetConsoleMode
ResumeThread
WaitForMultipleObjects
IsDebuggerPresent
ResetEvent
RtlUnwind
OpenMutexA
ExpandEnvironmentStringsW
WaitForSingleObject
SetLastError
GetThreadPriority

user32

IsWindowVisible
GetWindowTextLengthW
RegisterWindowMessageA
GetDC
CallNextHookEx
LoadImageW
wsprintfW
LoadIconA
GetSysColor
SetWindowPos
InsertMenuA
LoadBitmapW
FillRect
GetSubMenu
PeekMessageW
PostQuitMessage
PostMessageW
SetWindowLongA
LoadIconW
LoadStringA
EqualRect
SetDlgItemTextA
GetWindowPlacement
GetWindowTextA
GetWindowTextW
SetWindowLongW
GetWindow
PtInRect
IsWindow
GetMenuItemCount
MessageBoxA
CharPrevW
LoadCursorW
GetKeyState
PeekMessageA
SystemParametersInfoW
GetClientRect
WinHelpW
MessageBoxW
OffsetRect
UnregisterClassW
CharUpperW
LoadCursorA
SetForegroundWindow

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 343B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 461B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d5a6205a2a40363836c1266ff36cd67

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 132KB - Virtual size: 131KB

.tls Size: 512B - Virtual size: 343B

BSS Size: 512B - Virtual size: 36KB

DATA Size: 512B - Virtual size: 461B

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 512B - Virtual size: 20B

.text
Size: 132KB - Virtual size: 131KB

.tls
Size: 512B - Virtual size: 343B

BSS
Size: 512B - Virtual size: 36KB

DATA
Size: 512B - Virtual size: 461B

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 512B - Virtual size: 20B