eb5019eb5cfda650ec0cf7d552dcd25bc89c1f0dc6e04c47b124f524cb656a13

Sharing

Copy URL Twitter E-mail

General

Target

eb5019eb5cfda650ec0cf7d552dcd25bc89c1f0dc6e04c47b124f524cb656a13
Size

166KB
MD5

0c3935a425f25bbe1bb7fb7900eb3b15
SHA1

78d99d2a343cf9754bbb6bb645793f5c3008b651
SHA256

eb5019eb5cfda650ec0cf7d552dcd25bc89c1f0dc6e04c47b124f524cb656a13
SHA512

2fc27b49f647e31ca4d1fee1868c1e94a22cb5625e7d0888ae166e3a1c26b94d566f3ea087fedd650026d7b5e4cf75f53da4bdcb8bea8f4178ffb10c9e5ae52d
SSDEEP

3072:DuokoTdcgY2hmgMxEMETGgXBCGyeL84JtG1lbkl9zme00MnweLXG1DYN0uFsCiez:DuodTJ4RaGgX1yelJtll8e00u/W6N0ub

Score

N/A

Malware Config

Signatures

Files

eb5019eb5cfda650ec0cf7d552dcd25bc89c1f0dc6e04c47b124f524cb656a13
.exe windows x86

82ca54496677e3e2885039aa9e726a53

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumePathNameW
SetThreadPriorityBoost
GetStartupInfoA
RemoveDirectoryW
ExitThread
LoadLibraryExA
SuspendThread
GetShortPathNameA
SetupComm
FindNextVolumeW
GetCurrentProcessId
GetFileType
GlobalUnfix
LeaveCriticalSection
GetModuleHandleA
GetNumberOfConsoleMouseButtons
FlushInstructionCache
GetLocaleInfoW
_hwrite
GetWindowsDirectoryA
LCMapStringW
GetModuleFileNameA
SetComputerNameW
Beep
GetCPInfo
AllocateUserPhysicalPages

msvcrt

_adjust_fdiv
_controlfp
_acmdln
exit
_setjmp
memchr
isprint
__p__fmode
_adj_fdivr_m64
_wperror
_strrev
_XcptFilter
_exit
_pwctype
vfprintf
realloc
_heapused
wcschr
_wcsrev
__p__commode
_wstrtime
__set_app_type
wcscoll
__getmainargs
_except_handler3
_mbctokata
_initterm
_mbsspnp
_mbsnset
_heapset
_mbscmp
_findfirst
__setusermatherr

gdi32

OffsetRgn
SetWindowOrgEx
GetEnhMetaFileA
DPtoLP
GetCharacterPlacementA
CloseEnhMetaFile
GetSystemPaletteUse
StretchDIBits
PlayMetaFile
AddFontResourceA
GetDIBits
GetWindowOrgEx
SetPolyFillMode
GdiSetBatchLimit
GetKerningPairsA
GdiDeleteSpoolFileHandle
GdiStartPageEMF
LineTo
EndDoc
StartDocW
GdiGetSpoolFileHandle
GetTextCharsetInfo
RectVisible
PolyTextOutA
GetMetaFileBitsEx
AddFontResourceExA
StartFormPage

user32

GetUserObjectInformationW
SetPropA
SetDlgItemTextW
GetKBCodePage
GetDC
SetClipboardData
TranslateAcceleratorA
SetMenuDefaultItem
CreateAcceleratorTableW
DdeQueryStringW
GetKeyboardLayoutNameA
UserHandleGrantAccess
DdeEnableCallback
UnhookWindowsHookEx
RegisterHotKey
PostMessageA
RegisterClipboardFormatW
ShowScrollBar
ScrollWindow
GetClipCursor
CloseDesktop
SetMenuInfo
DdeFreeDataHandle
IsRectEmpty
ScrollWindowEx
DlgDirSelectComboBoxExW
CloseWindowStation
MessageBoxExW
GetKeyboardState
CharUpperW
LoadKeyboardLayoutW
GetMenuContextHelpId
GetCapture
GetCaretBlinkTime
CreateIconFromResourceEx

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82ca54496677e3e2885039aa9e726a53

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

Sections

.text Size: 101KB - Virtual size: 100KB

.rdata Size: 53KB - Virtual size: 53KB

.data Size: 512B - Virtual size: 64KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 101KB - Virtual size: 100KB

.rdata
Size: 53KB - Virtual size: 53KB

.data
Size: 512B - Virtual size: 64KB

.rsrc
Size: 9KB - Virtual size: 9KB