995f75badf9ba9283e0422891f97904abe92e8086a91f32a87f4fb05448679f2

Sharing

Copy URL Twitter E-mail

General

Target

995f75badf9ba9283e0422891f97904abe92e8086a91f32a87f4fb05448679f2
Size

292KB
MD5

02707a8852efc7d21417a5e16971b5a0
SHA1

c81cb04ef01da5a97dd1435f0d2fd0fc12ecb8e0
SHA256

995f75badf9ba9283e0422891f97904abe92e8086a91f32a87f4fb05448679f2
SHA512

cbafed1dda880bc70356d43a7e67f9a058f7d91ddf987d04622df5cdbf50621d2e1baec91f6ea98d63e559a116d9054f48fb4e4022ad6731b6829c090dde4857
SSDEEP

1536:pjedwCb7Ii58rqwaP3Jgj4uR6z4NOn8FjGfUI5jcyQPFlfCeHcNrfVp2nsk0QFyR:YdwCbP3JbLcXNlfCeHcNrfVtk0eEKs

Score

N/A

Malware Config

Signatures

Files

995f75badf9ba9283e0422891f97904abe92e8086a91f32a87f4fb05448679f2
.exe windows x86

4ba35aba78b50bcce19a281555291471

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord6142
ord293
ord3811
ord3337
ord641
ord540
ord2818
ord800
ord500
ord5860
ord472
ord5606
ord772
ord1641
ord3573
ord3693
ord3626
ord3663
ord4133
ord4297
ord2414
ord5788
ord5787
ord825
ord3571
ord640
ord2405
ord5785
ord1640
ord323
ord2859
ord2864
ord823

msvcrt

rand
__CxxFrameHandler
__setusermatherr
_adjust_fdiv
_initterm
__p__fmode
__set_app_type
__p__commode
_controlfp
_acmdln
_XcptFilter
?terminate@@YAXXZ
_except_handler3
__getmainargs
_exit
exit
srand
sscanf
_ftol

kernel32

GetCommandLineA
Sleep
UnhandledExceptionFilter
GetVersionExA
GetProcAddress
GetModuleHandleA
FreeLibrary
LoadLibraryA
GetTickCount
ExitProcess
GetStartupInfoA

user32

DispatchMessageA
CreateWindowExA
RegisterClassA
GetClientRect
TranslateMessage
GetMessageA
GetWindow
SendMessageA
PeekMessageA
CharNextA
PostQuitMessage
GetParent
PostMessageA
LoadIconA
IsWindow
GetCursorPos
SystemParametersInfoA
SetTimer
GetForegroundWindow
KillTimer
GetDlgItemInt
EndDialog
wsprintfA
IsWindowVisible
SetDlgItemTextA
GetWindowRect
SetForegroundWindow
FindWindowA
DialogBoxParamA
GetDesktopWindow
GetDC
ReleaseDC
PtInRect
RegisterWindowMessageA
DefWindowProcA
SetCursor
GetTopWindow

gdi32

GetStockObject
Rectangle
GetClipBox
SelectObject
MoveToEx
LineTo
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreatePen
CreateSolidBrush

advapi32

RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 216KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xur
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4ba35aba78b50bcce19a281555291471

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

gdi32

advapi32

Sections

.text Size: 28KB - Virtual size: 26KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 216KB - Virtual size: 215KB

.rsrc Size: 8KB - Virtual size: 7KB

.xur Size: 28KB - Virtual size: 28KB

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 216KB - Virtual size: 215KB

.rsrc
Size: 8KB - Virtual size: 7KB

.xur
Size: 28KB - Virtual size: 28KB