c4e862dc99813b6b8c788786e54bcc967ce1953af6697777ae890ee6947276fc

General

Target

c4e862dc99813b6b8c788786e54bcc967ce1953af6697777ae890ee6947276fc
Size

103KB
MD5

5f6198e837921573bbb030c9c39671f8
SHA1

751b5c78b08f9d9c43baf11df1d60e52fef23f0e
SHA256

c4e862dc99813b6b8c788786e54bcc967ce1953af6697777ae890ee6947276fc
SHA512

0ab73cdd65802845f5eb5daa740856702de7e9b536e7a26f4117d2b8e47a52ed47a792720a16b314ab9fa999ef4609cdf7f3241a58d6ffbe74b041422245a8fc
SSDEEP

1536:4r88DghvtdEJKb/7rYAK06MFeu1SDp8WugrgjStRJPZ6UMVOK:4DDatdEwr7S06Cn1SV8LgrgjSt/+H

Score

N/A

Malware Config

Signatures

Files

c4e862dc99813b6b8c788786e54bcc967ce1953af6697777ae890ee6947276fc
.exe windows x86

ef72b3dfc4d752d8807ba9bcb7f4ed7d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
SuspendThread
GetSystemDirectoryA
GetWindowsDirectoryA
GetCurrentProcessId
CreateThread
GetVersionExA
SetFilePointer
GetCurrentThread
GetCurrentProcess
ResetEvent
ReleaseMutex
ExitProcess
ResumeThread
CreateMutexA
VirtualFree
VirtualAlloc
ExitThread
LocalFree
GetFileSize
ReadFile
CreateSemaphoreA
WaitForSingleObject
lstrcpyA
CreateFileA
SetEvent
GetCurrentDirectoryA
GetStdHandle
LocalAlloc
GetCurrentThreadId
GetComputerNameA
WriteFile
CloseHandle
DeleteFileA
lstrcatA
GetModuleHandleA
VirtualProtect
GetTickCount
GetCommandLineA
OutputDebugStringA
lstrlenA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
IsDebuggerPresent

advapi32

GetUserNameA

user32

GetForegroundWindow
MessageBoxA
wsprintfA
GetClassInfoExA
CreateDialogParamA
GetSystemMetrics
GetActiveWindow
SendMessageA
FindWindowA
ShowWindow
PostMessageA
RegisterClassA
GetWindow

ntdll

memcpy

ole32

CoUninitialize
CoInitialize

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef72b3dfc4d752d8807ba9bcb7f4ed7d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

user32

ntdll

ole32

Sections

.text Size: 54KB - Virtual size: 54KB

.rdata Size: 40KB - Virtual size: 39KB

.data Size: 7KB - Virtual size: 98KB

.rsrc Size: 512B - Virtual size: 436B

.text
Size: 54KB - Virtual size: 54KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 7KB - Virtual size: 98KB

.rsrc
Size: 512B - Virtual size: 436B