494ef6caa9a1ec6a9e7c3244f5ff7ccc49fa50a672cdcdb11b1da197a4d225fb

Sharing

Copy URL Twitter E-mail

General

Target

494ef6caa9a1ec6a9e7c3244f5ff7ccc49fa50a672cdcdb11b1da197a4d225fb
Size

491KB
MD5

80880516e5f337d5aa60f682d81561bb
SHA1

cf4d104b5f2088153c80c50eee307777b825ef41
SHA256

494ef6caa9a1ec6a9e7c3244f5ff7ccc49fa50a672cdcdb11b1da197a4d225fb
SHA512

467bf495b42d4c0a38097d62b96ae8926ffc69fa0795e8321906b7c8dbb771a18998d805b6ca2c6494da70ca00ed8d0ce76111b52981ec6916433c58ac608efd
SSDEEP

6144:vF6oeKB5bTlb/6diB0pPnZV90ghktvm5P+s30FammiaR1F2cfZ:lXvhlB+PZV90g+krMammiSr2cfZ

Score

N/A

Malware Config

Signatures

Files

494ef6caa9a1ec6a9e7c3244f5ff7ccc49fa50a672cdcdb11b1da197a4d225fb
.exe windows x86

8bd50817b89df9d6cb1efe25a32ff19b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP

Imports

kernel32

SetConsoleTitleA
GetTickCount
GetCurrentProcessId
GetConsoleTitleA
HeapCreate
CreateFileA
GetLastError
GetCommandLineA
CloseHandle
WriteConsoleW
SetStdHandle
FlushFileBuffers
HeapReAlloc
LoadLibraryW
GetConsoleMode
GetConsoleCP
lstrlenW
ReadFile
WaitForSingleObject
GetStringTypeW
MultiByteToWideChar
LCMapStringW
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
WriteFile
ExitProcess
DeleteCriticalSection
WideCharToMultiByte
HeapAlloc
Sleep
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDateFormatA
GetSystemInfo
GetTimeFormatA
GlobalMemoryStatus
SetFilePointer
FindFirstChangeNotificationA
FindCloseChangeNotification
GetFileType
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
LeaveCriticalSection
EnterCriticalSection
CreateFileW
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetProcAddress
HeapSize
RaiseException
RtlUnwind
HeapSetInformation
GetStartupInfoW
HeapFree
IsProcessorFeaturePresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThreadId

user32

GetDlgItem
GetWindowTextA
wsprintfA
SendMessageA
GetDialogBaseUnits
GetMenu
MessageBoxW
FindWindowA
FindWindowExA
MessageBoxA
SetMenu
DefWindowProcA
SetWindowTextA
PostQuitMessage
GetWindowLongA
GetKeyState
SetFocus
CallWindowProcA
SetTimer
GetWindowThreadProcessId
FindWindowExW
GetWindowTextW
KillTimer
BeginPaint
EndPaint
ReleaseDC
GetDC
LoadMenuA
GetSystemMetrics
CreateWindowExA
SendDlgItemMessageW
SetActiveWindow

gdi32

CreateFontA
SelectObject
ChoosePixelFormat
DescribePixelFormat
SetPixelFormat
EnumFontsA
CombineTransform

comdlg32

GetOpenFileNameA
FindTextW

advapi32

CredEnumerateA

shell32

SHGetFolderPathA
SHGetFolderPathW

shlwapi

PathRemoveArgsA
PathAppendA

opengl32

wglMakeCurrent
wglDeleteContext
wglCreateContext
glEnable
glBlendFunc
glLightfv

authz

AuthzInitializeResourceManager

Sections

.text
Size: 324KB - Virtual size: 323KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.try
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.relov
Size: 512B - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lave
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8bd50817b89df9d6cb1efe25a32ff19b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

shlwapi

opengl32

authz

Sections

.text Size: 324KB - Virtual size: 323KB

.rdata Size: 20KB - Virtual size: 20KB

.data Size: 5KB - Virtual size: 12KB

.try Size: 6KB - Virtual size: 5KB

.relov Size: 512B - Virtual size: 332B

.lave Size: 5KB - Virtual size: 4KB

.rsrc Size: 129KB - Virtual size: 129KB

.text
Size: 324KB - Virtual size: 323KB

.rdata
Size: 20KB - Virtual size: 20KB

.data
Size: 5KB - Virtual size: 12KB

.try
Size: 6KB - Virtual size: 5KB

.relov
Size: 512B - Virtual size: 332B

.lave
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 129KB - Virtual size: 129KB