e95ae6880042b77b4b5a69429a3c2afc7dc77e9b62814e485c9802ecf4de2994

Sharing

Copy URL Twitter E-mail

General

Target

e95ae6880042b77b4b5a69429a3c2afc7dc77e9b62814e485c9802ecf4de2994
Size

133KB
MD5

7c990534b97da649deff7be2d49f08ec
SHA1

f66c84bcf0ef79b5ade1a34ad997c3572a158d1d
SHA256

e95ae6880042b77b4b5a69429a3c2afc7dc77e9b62814e485c9802ecf4de2994
SHA512

237e1e37ac620ca9deb5065790fa7fe2780235278d874f29e0fe1979ffab77133d4a9452b67680f483f69447cad7a41294980204fd7ddcfded618689c77fbb62
SSDEEP

3072:oq/KVgm4n5V4tveGCjmEeBrcIxfq93mNHxxrcqNYUYuDfBbJ9Ji1:JKVgDnTasKwGfc3fUYUYuDfX9J

Score

N/A

Malware Config

Signatures

Files

e95ae6880042b77b4b5a69429a3c2afc7dc77e9b62814e485c9802ecf4de2994
.exe windows x86

13792d0cfdf0b09e5ead3ef2fc04ead8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcstol
mbstowcs
memset
malloc
wcschr
atol
rand
sqrt
srand
tolower
clock
_acmdln

gdi32

GetBkColor
GetObjectA
SetBkMode
GetPixel

user32

ReleaseDC
IsDlgButtonChecked
SetPropA
DrawAnimatedRects
MsgWaitForMultipleObjects
PostMessageA
LoadIconA
SetWindowTextA
CharLowerA
UpdateWindow
SetScrollPos
IsMenu
DestroyIcon
IsWindow
GetWindow
GetMenu
SetWindowPlacement
GetActiveWindow
BeginPaint
GetWindowThreadProcessId
PostQuitMessage
ScrollWindow
DispatchMessageA
ShowWindow
IsIconic
GetParent
IsRectEmpty
RemoveMenu
EnumChildWindows
TranslateMDISysAccel
SetCapture
SetMenuItemInfoA
CreateMenu
WindowFromPoint
GetSysColor
GetKeyboardState
GetMenuItemInfoA
InflateRect
DrawFrameControl
GetSubMenu
CloseClipboard
WaitMessage
DrawTextA
OemToCharA
CharNextA
GetMenuStringA
GetWindowTextA
GetSysColorBrush
GetScrollRange
EnableMenuItem
ClientToScreen
GetForegroundWindow
EmptyClipboard
FindWindowA
ChildWindowFromPoint
GetDCEx
DrawEdge
GetWindowTextLengthA
IsCharUpperA
EnumThreadWindows
GetIconInfo
SystemParametersInfoA
InsertMenuItemA

kernel32

VirtualAlloc
ResetEvent
CreateFileA
IsBadReadPtr
lstrcpyA
ExitProcess
GetStartupInfoA
lstrcpynA
GetOEMCP
LocalAlloc
DeleteFileA
HeapDestroy
GetCurrentThread
LocalFree
VirtualAllocEx
WriteFile
GetLocalTime
MoveFileA
lstrlenA
GetCommandLineA
FindResourceA
LoadLibraryA
GetACP
SetHandleCount
GetProcAddress

Exports

Exports

_M0Xyvk0ssSA@8
R8LHscaH83Q@24
wFDEMey2ihCoJ
_H1Qz5p@12
doOMcz5PtUn9T
_9K5R_@12
_SnB1mph
a6uIH_ZL4r

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aadata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 236B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13792d0cfdf0b09e5ead3ef2fc04ead8

Headers

File Characteristics

Imports

msvcrt

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 10KB - Virtual size: 122KB

.aadata Size: 98KB - Virtual size: 98KB

.data Size: 4KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 236B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 10KB - Virtual size: 122KB

.aadata
Size: 98KB - Virtual size: 98KB

.data
Size: 4KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 236B

.rsrc
Size: 8KB - Virtual size: 8KB