2ed32f02373a8c797a79edd3d8d1443b249285c1c6b1c0cf6cab3767f2cfc28b

Sharing

Copy URL Twitter E-mail

General

Target

2ed32f02373a8c797a79edd3d8d1443b249285c1c6b1c0cf6cab3767f2cfc28b
Size

601KB
MD5

05bab5491c5aa14913733ee679ee9eb1
SHA1

45db326337b99b7a2be97a7aaaa59b8612a0369b
SHA256

2ed32f02373a8c797a79edd3d8d1443b249285c1c6b1c0cf6cab3767f2cfc28b
SHA512

14b0f91f32e9995eed9b4da3574c051c2f85a2ea2ca6a48a930b29fcb0400047ae3a72b9e9184b09b6cca67636b75f08a09ec9015920434dc7f95f8447e31f29
SSDEEP

12288:TdTlbEACBxQtOudi/BfWxerbcsZ6P+jss9wC422F3a8Erp0kS:TdBbEACBxQtz4fWyiWiC4HBEFnS

Score

N/A

Malware Config

Signatures

Files

2ed32f02373a8c797a79edd3d8d1443b249285c1c6b1c0cf6cab3767f2cfc28b
.exe windows x86

20d482b386767419ec91f62f7f4e50f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetActiveWindow
UnregisterClassW
RegisterClassExA
AppendMenuA
ShowCaret
CreateMDIWindowA
GetWindowModuleFileNameW
RegisterClassA
SystemParametersInfoW
SetDlgItemTextA

kernel32

GetStringTypeW
GetTickCount
IsDebuggerPresent
CreateMutexA
GetTimeZoneInformation
Sleep
FindResourceExA
GetModuleHandleW
GetOEMCP
GetFileType
VirtualFree
SetLastError
InterlockedDecrement
GetConsoleMode
CreateDirectoryW
GetCPInfo
CloseHandle
GetConsoleCP
HeapSize
WriteFile
CreateFileA
GetLastError
SetEnvironmentVariableA
FreeLibrary
UnhandledExceptionFilter
GetProcAddress
GetLocaleInfoA
ReadFile
GetVersionExA
GetProcessHeap
WriteConsoleA
HeapDestroy
GetTimeFormatA
InterlockedCompareExchange
GlobalReAlloc
WriteConsoleW
VirtualAlloc
GetCommandLineA
GetStartupInfoA
GetDateFormatA
GetSystemTimeAsFileTime
TerminateProcess
OpenMutexA
FreeEnvironmentStringsW
GlobalDeleteAtom
LeaveCriticalSection
QueryPerformanceCounter
FindNextFileW
FreeEnvironmentStringsA
SetFileTime
IsValidLocale
GetCurrentProcessId
GetEnvironmentStrings
HeapReAlloc
MultiByteToWideChar
InterlockedIncrement
GetProcAddress
LCMapStringW
GetStringTypeA
LoadLibraryA
WriteProfileStringA
TlsAlloc
TlsFree
HeapAlloc
GetModuleFileNameA
EnumCalendarInfoA
SetStdHandle
FlushFileBuffers
GetCurrentThread
SetHandleCount
GetEnvironmentStringsW
GetCurrentThreadId
ExitProcess
GetStdHandle
GetNamedPipeHandleStateA
InterlockedExchange
SetEvent
GetCurrentProcess
CompareStringA
GetUserDefaultLCID
GetLocaleInfoW
GetACP
HeapCreate
CompareStringW
EnumSystemLocalesA
EnterCriticalSection
GetConsoleOutputCP
SetConsoleCtrlHandler
VirtualQuery
InitializeCriticalSection
SetUnhandledExceptionFilter
LCMapStringA
lstrcmpiA
ConnectNamedPipe
SetFilePointer
WideCharToMultiByte
RtlUnwind
TlsGetValue
TlsSetValue
DeleteCriticalSection
HeapFree
GetComputerNameW
GetModuleHandleA
InterlockedExchangeAdd
IsValidCodePage

comctl32

InitCommonControlsEx

Sections

.text
Size: 262KB - Virtual size: 262KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 319KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20d482b386767419ec91f62f7f4e50f3

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 262KB - Virtual size: 262KB

.rdata Size: 9KB - Virtual size: 33KB

.data Size: 319KB - Virtual size: 318KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 262KB - Virtual size: 262KB

.rdata
Size: 9KB - Virtual size: 33KB

.data
Size: 319KB - Virtual size: 318KB

.rsrc
Size: 9KB - Virtual size: 8KB