ddeb1a981f5fbdab131b8769b5f99683b1e01a56df7642e46ee2dd05c1be6548

Sharing

Copy URL

Twitter E-mail

General

Target

ddeb1a981f5fbdab131b8769b5f99683b1e01a56df7642e46ee2dd05c1be6548
Size

862KB
MD5

5c537354deff4d8686da5bd537326010
SHA1

6c0ef3a740f36e57ed98fda6553c239b4e24ee1b
SHA256

ddeb1a981f5fbdab131b8769b5f99683b1e01a56df7642e46ee2dd05c1be6548
SHA512

7332397e13e23f146102db8fabb01d3a214bd731cfcfa04951f30f4edae859b741033ecfac511f6397599bd1ae0462586ff8305ae5a9f5c7d33d27e32d0f7da1
SSDEEP

24576:rqJ+GjQYTHweeG002OFGZaXR4e+U3s0UqZ:rqJ+GjQCHweI02OFGsB4KH1Z

Score

N/A

Malware Config

Signatures

Files

ddeb1a981f5fbdab131b8769b5f99683b1e01a56df7642e46ee2dd05c1be6548
.exe windows x86

d757645fac9a3c3895270456883c7a40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
VirtualAlloc
GetOEMCP
Sleep
VirtualFree
WriteFile
HeapCreate
CreateProcessA
GetEnvironmentStrings
GetModuleHandleW
GetACP
CloseHandle
ReadFile
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
GetCPInfo
GetCommandLineW
LockResource
SizeofResource
RemoveDirectoryA
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
UnmapViewOfFile
LCMapStringW
LoadLibraryExW
LeaveCriticalSection
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
ExpandEnvironmentStringsA
DuplicateHandle
FindNextFileA
CreateFileMappingA
CompareStringA
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
GetStartupInfoA
LoadLibraryA
GetVersionExA
QueryPerformanceCounter
SetEvent
GetCurrentThread
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
SetEndOfFile
GetConsoleMode
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
SetFileAttributesA
CreateThread
SetFilePointer
MultiByteToWideChar
UnhandledExceptionFilter
GetPrivateProfileStringA
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WideCharToMultiByte
GetTempPathA
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
WaitForSingleObject
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetVersion
GetCommandLineA
GetLastError
GetTickCount
GetModuleHandleA
GetCurrentProcessId
LoadLibraryW
GetCurrentThreadId

advapi32

RegCloseKey
RegQueryValueExA
RegQueryInfoKeyA

user32

MessageBoxA
EndDialog
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
GetWindowLongA
CheckMenuItem
SetWindowTextA
SetWindowLongA
ReleaseCapture
SetCapture
GetWindowRect
GetSystemMetrics
BeginPaint
SetFocus
CreateWindowExA
GetSubMenu
LoadStringA
PeekMessageA
EnableWindow
UpdateWindow
GetMessageA
DestroyWindow
GetClientRect
GetDC
DispatchMessageA
IsWindow
SetWindowPos
ReleaseDC
InvalidateRect
wsprintfA
CallWindowProcA
SystemParametersInfoA

gdi32

SetBkColor
DeleteDC
SetTextColor

Sections

.text
Size: 826KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d757645fac9a3c3895270456883c7a40

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

Sections

.text Size: 826KB - Virtual size: 1.1MB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 19KB - Virtual size: 18KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 826KB - Virtual size: 1.1MB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 10KB - Virtual size: 9KB