955b41ec93d517b348a485b377848d102bdc74a81bb712ec416addc6c9997b8d

Sharing

Copy URL

Twitter E-mail

General

Target

955b41ec93d517b348a485b377848d102bdc74a81bb712ec416addc6c9997b8d
Size

72KB
MD5

0a7e68a84765d639210b77575c2373bd
SHA1

f98e1d397a61bc98141f9c1c31f607855331ee10
SHA256

955b41ec93d517b348a485b377848d102bdc74a81bb712ec416addc6c9997b8d
SHA512

8e3c6081089ffcd86492abd084c5e456fc46b9f75da3008da9b3e1ec4796a80ba9738904b87b87cfc91bd23ba38bc2bda131b1f90f90c530e6e47c1706cdca61
SSDEEP

1536:LfaACSdZ1gHZVtlayuDfkJYR1zJU+mDqDD:LASaurTz6+mDkD

Score

N/A

Malware Config

Signatures

Files

955b41ec93d517b348a485b377848d102bdc74a81bb712ec416addc6c9997b8d
.exe windows x86

b6e2362437a034c1db5762338dc7d1c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
ShowWindow
PostMessageA
LoadStringA
GetMessageA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassExA
UpdateWindow
DefWindowProcA
DestroyWindow
DialogBoxParamA
BeginPaint
GetClientRect
DrawTextA
EndPaint
PostQuitMessage
EndDialog
SendMessageA

kernel32

GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
Sleep
GlobalSize
CreateThread
WaitForSingleObject
GlobalAlloc
GetModuleHandleA
lstrlenA
GetCommandLineW
HeapSize
GetOEMCP
GetACP
RtlUnwind
GetEnvironmentStringsW
GetCPInfo
InitializeCriticalSection
LoadLibraryA
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RaiseException
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent

comctl32

ord17

shell32

CommandLineToArgvW

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

wtsapi32

WTSSendMessageA
WTSSetUserConfigA

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6e2362437a034c1db5762338dc7d1c1

Headers

File Characteristics

Imports

user32

kernel32

comctl32

shell32

advapi32

wtsapi32

Sections

.text Size: 35KB - Virtual size: 35KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 5KB - Virtual size: 10KB

.rsrc Size: 19KB - Virtual size: 19KB

.text
Size: 35KB - Virtual size: 35KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 5KB - Virtual size: 10KB

.rsrc
Size: 19KB - Virtual size: 19KB