e0f5597d5edd549276c1c98ef3e81c49228d9e60b38f52929ad3b8fb0395abc5

Sharing

Copy URL Twitter E-mail

General

Target

e0f5597d5edd549276c1c98ef3e81c49228d9e60b38f52929ad3b8fb0395abc5
Size

82KB
MD5

4bc29b12cf49b42646bc137c759a6ede
SHA1

fce995dc786c60ad766f504cd5d82fc63b033c8c
SHA256

e0f5597d5edd549276c1c98ef3e81c49228d9e60b38f52929ad3b8fb0395abc5
SHA512

b0abae2143cc1374bb21ab020fa032777218a554029fb8610796fbf3e63cd472b687bf790d21c6d09a5b8079eccd38d4e6103748dc39bdc2f6b52a15912eb045
SSDEEP

1536:oOBH3MeF0oGK+khtinzy/Q/j5hEseWb0rd81/nUF8AHrYGPOBmhf0JpCPrMIY:/R3ezK+kE24dferrds/nqLYAONOMh

Score

N/A

Malware Config

Signatures

Files

e0f5597d5edd549276c1c98ef3e81c49228d9e60b38f52929ad3b8fb0395abc5
.exe windows x86

b7e8ba6c0e2114442c1d56293c96971e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeInformationA
GetModuleHandleW
FindClose
WriteFile
GetTempPathA
GetLastError
VirtualAlloc
MulDiv
PulseEvent
GetTempPathA
GetDiskFreeSpaceExW
FindFirstChangeNotificationA
OutputDebugStringA
ExitProcess
CreateFileW
GetModuleHandleA
UnlockFileEx
GetSystemTimeAsFileTime
CompareStringW
MapViewOfFileEx
WriteFileEx
GetTempFileNameW
VirtualProtect
WritePrivateProfileStructA
LoadLibraryA
GetProcAddress

msvcrt

_wcsnicoll
_ismbcsymbol
isspace
scanf
__getmainargs
_ultow
time
ispunct
_winmajor
??9type_info@@QBEHABV0@@Z
isupper
__p__pgmptr
_tolower
isprint
_CIcosh
_getpid
fgetwc
isalnum
memcpy
_XcptFilter

user32

GetMonitorInfoW
ShowWindow
ModifyMenuW
GetWindowTextW
SendDlgItemMessageW
FillRect
DialogBoxParamW
CreateWindowExW
SetWindowPlacement
CopyRect
PrivateExtractIconExA
SetWindowPos
GetWindowLongW
GetMenuState
GetSystemMetrics
GetWindowPlacement
LoadStringW
AdjustWindowRectEx

gdi32

GetStockObject
SetBkMode
GetPixel
CreateCompatibleDC
SetPixel
GetDeviceCaps
ExtCreatePen
GetDIBits

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nls
Size: 512B - Virtual size: 25B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_winoc
Size: 512B - Virtual size: 122B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7e8ba6c0e2114442c1d56293c96971e

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.crt Size: 1KB - Virtual size: 1KB

.nls Size: 512B - Virtual size: 25B

.data Size: 5KB - Virtual size: 4KB

.rsrc Size: 66KB - Virtual size: 66KB

_winoc Size: 512B - Virtual size: 122B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.crt
Size: 1KB - Virtual size: 1KB

.nls
Size: 512B - Virtual size: 25B

.data
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 66KB - Virtual size: 66KB

_winoc
Size: 512B - Virtual size: 122B