3b29e46fe6c018adea5180a02887d12b27cf2d133f26ab966210d3072495b3a3

Sharing

Copy URL

Twitter E-mail

General

Target

3b29e46fe6c018adea5180a02887d12b27cf2d133f26ab966210d3072495b3a3
Size

823KB
MD5

70ac4e3ee7ddc1203aa150e831c36720
SHA1

436ae7312909cb8dde27ab5a6c0694c40405f3c7
SHA256

3b29e46fe6c018adea5180a02887d12b27cf2d133f26ab966210d3072495b3a3
SHA512

d1ae60c37dcc2ae553b12c900ad045870c82bd403adc44757393eb367ac0178b408ec7437ebe4604217d9ccc58ab3b5192b3caefc6149745fef4b9d04e569648
SSDEEP

24576:87DpcP6UB0iNGpRbqbEh70EU7/am1bYXlWdxBFOFyP:879kipR+gMamSXlWTHD

Score

N/A

Malware Config

Signatures

Files

3b29e46fe6c018adea5180a02887d12b27cf2d133f26ab966210d3072495b3a3
.exe windows x86

13676b717391101989c94f552617e233

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GetCurrentProcess
WriteFile
VirtualAlloc
SetHandleCount
CloseHandle
VirtualFree
DeleteCriticalSection
ExitProcess
GetCPInfo
HeapCreate
WriteConsoleA
GetModuleHandleW
GetStdHandle
GetLastError
LeaveCriticalSection
FreeEnvironmentStringsW
HeapReAlloc
InterlockedDecrement
GetEnvironmentStringsW
TlsGetValue
GetModuleHandleA
GetConsoleMode
QueryPerformanceCounter
GetCommandLineA
SetFilePointer
EnterCriticalSection
IsDebuggerPresent
GetEnvironmentStrings
GetFileType
UnhandledExceptionFilter
SetLastError
RaiseException
GetOEMCP
TerminateProcess
CreateFileA
IsValidCodePage
InterlockedIncrement
TlsFree
WriteConsoleW
GetConsoleOutputCP
MultiByteToWideChar
GetCurrentThreadId
LoadLibraryA
GetLocaleInfoA
GetStringTypeA
GetConsoleCP
FlushFileBuffers
GetTickCount
GetStringTypeW
GetStartupInfoA
HeapFree
InitializeCriticalSectionAndSpinCount
GetProcAddress
HeapAlloc
SetUnhandledExceptionFilter
RtlUnwind
SetStdHandle
WideCharToMultiByte
Sleep
LCMapStringW
lstrlenA
VirtualProtectEx
GetModuleFileNameA
TlsAlloc
TlsSetValue
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
FreeEnvironmentStringsA
HeapSize

user32

SetMenu
PostMessageA
InvalidateRect
ValidateRect
DefWindowProcA
MessageBoxA
GetFocus
LoadIconA
GetDC
SetTimer
GetMessageA
SetWindowLongA
wsprintfA
GetWindowRect
SetWindowPos
DispatchMessageA
ShowWindow
PostQuitMessage
ReleaseDC
EnumDisplaySettingsA
LoadAcceleratorsA
TranslateAcceleratorA
LoadCursorA
EnumDisplayDevicesA
TranslateMessage
GetSystemMetrics
MoveWindow
RegisterClassA
CreateWindowExA
UpdateWindow

gdi32

ChoosePixelFormat
SwapBuffers
GetDeviceCaps
DescribePixelFormat
SetPixelFormat

avifil32

AVIMakeStreamFromClipboard

Sections

.code
Size: 801KB - Virtual size: 801KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13676b717391101989c94f552617e233

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

avifil32

Sections

.code Size: 801KB - Virtual size: 801KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 44KB

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 3KB - Virtual size: 2KB

.code
Size: 801KB - Virtual size: 801KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 44KB

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 3KB - Virtual size: 2KB