d548fe86cef011d2ce367682b4d90ae83bc414de98538b1e68adf0cecd416bbc

Sharing

Copy URL

Twitter E-mail

General

Target

d548fe86cef011d2ce367682b4d90ae83bc414de98538b1e68adf0cecd416bbc
Size

495KB
MD5

0ac5e8c0b79d72521a8344bc53d2a8d0
SHA1

ec0c4b461008a6d1609b4ea1f42f2bbdbef9fa23
SHA256

d548fe86cef011d2ce367682b4d90ae83bc414de98538b1e68adf0cecd416bbc
SHA512

c87f1fb11a14d5fc8d148d0dfc38bd6fbab836c456d995f7900237efa8c99cc895a591c4b5a6d450af63a9532706769871df9d71bd7cb734eac8b3c8cf741652
SSDEEP

12288:uHIDBluBrkGi7n1DzgxAMJsIeAE5Dva1JaI:uHI1luaGi71QxDs7aII

Score

N/A

Malware Config

Signatures

Files

d548fe86cef011d2ce367682b4d90ae83bc414de98538b1e68adf0cecd416bbc
.exe windows x86

ee03b6175599e086695b9d1c136b11d9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLangID
FreeEnvironmentStringsA

ntdll

RtlDeleteResource
NtClose
RtlAcquireResourceExclusive
_wcsicmp
RtlUnwind
NtDuplicateToken
RtlOpenCurrentUser
wcstoul
RtlReleaseResource
NtQueryVirtualMemory
RtlInitializeResource
RtlAcquireResourceShared

user32

ShowWindow
GetClientRect
LoadStringW
GetWindowLongW
SetWindowTextW
GetMonitorInfoW
EndDialog
SetTimer
TranslateMessage
RegisterDeviceNotificationW
RegisterWindowMessageW
CallWindowProcW
SystemParametersInfoW
DefWindowProcW
MessageBoxW
UnregisterDeviceNotification
FindWindowW
PostQuitMessage
SendMessageW
DestroyWindow
CreateWindowExW
wsprintfW
KillTimer
GetSystemMetrics
CharNextW
LoadImageW
PostMessageW
SetWindowLongW
SendDlgItemMessageW
SetWindowPos
DefDlgProcW
GetSysColorBrush
CloseWindowStation
GetMessageW
MonitorFromRect
SetForegroundWindow
DispatchMessageW

shell32

SHCreateDirectoryExA

winsta

WinStationQueryInformationW

winspool.drv

DeletePrinter
AddPortA

comctl32

CreateStatusWindowW
ImageList_AddMasked
ImageList_Create
ImageList_Destroy

setupapi

SetupDiGetDeviceInstanceIdW
SetupDiCreateDeviceInfoList
SetupDiOpenDeviceInfoW
SetupDiOpenDevRegKey
SetupDiGetClassDevsW
SetupDiOpenDeviceInterfaceW
SetupDiGetDeviceInterfaceAlias
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiOpenDeviceInterfaceRegKey
SetupDiEnumDeviceInterfaces

ole32

CoCreateInstance
CLSIDFromString
CoInitialize
CoUninitialize

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 131KB - Virtual size: 554KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ee03b6175599e086695b9d1c136b11d9

Headers

File Characteristics

Imports

kernel32

ntdll

user32

shell32

winsta

winspool.drv

comctl32

setupapi

ole32

Sections

.text Size: 149KB - Virtual size: 148KB

.data Size: 131KB - Virtual size: 554KB

.rdata Size: 24KB - Virtual size: 24KB

.rsrc Size: 185KB - Virtual size: 184KB

.idata Size: 5KB - Virtual size: 5KB

.text
Size: 149KB - Virtual size: 148KB

.data
Size: 131KB - Virtual size: 554KB

.rdata
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 185KB - Virtual size: 184KB

.idata
Size: 5KB - Virtual size: 5KB