0eba635f2f35808de558476085c5eea4471aba520c4a2a2d4fffc5424a5eab93

Sharing

Copy URL Twitter E-mail

General

Target

0eba635f2f35808de558476085c5eea4471aba520c4a2a2d4fffc5424a5eab93
Size

229KB
MD5

0ba5a803008c0d5c1c63e92148a6cc88
SHA1

edc8a6d9c79b7e3931c5b7acdf9745bf67ae3a57
SHA256

0eba635f2f35808de558476085c5eea4471aba520c4a2a2d4fffc5424a5eab93
SHA512

07448ee11a342869637d054187b56e8ab1b27e56b93044657170c6f3575c9db7f0ff9e23c88fb59bbf96b63ef77a89504b7447356c6df9447c21310ba28330f0
SSDEEP

6144:uHtoNPTcRgM6KxojbSaiWT0mDgoqoXAvXr7l:uHtoNPTlRjbliWIX+wvX

Score

N/A

Malware Config

Signatures

Files

0eba635f2f35808de558476085c5eea4471aba520c4a2a2d4fffc5424a5eab93
.exe windows x86

f2ebd9237fdd72ffc806ddda05fe550e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharUpperBuffA
GetDesktopWindow
CharLowerBuffA

kernel32

GetSystemTime

Exports

Exports

LowcaseBinarY
?LostForwardTip@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@Y
?TemplateMessage@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@Y

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rt_eax
Size: 512B - Virtual size: 442B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_esp
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_edx
Size: 512B - Virtual size: 59B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_ebp
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rt_ebx
Size: 1024B - Virtual size: 676B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rt_ea
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rt_edi
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_esi
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_ecx
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 644KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_ec
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2ebd9237fdd72ffc806ddda05fe550e

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 28KB

rt_eax Size: 512B - Virtual size: 442B

rt_esp Size: 512B - Virtual size: 28B

rt_edx Size: 512B - Virtual size: 59B

rt_ebp Size: 512B - Virtual size: 76B

rt_ebx Size: 1024B - Virtual size: 676B

rt_ea Size: 512B - Virtual size: 64B

rt_edi Size: 512B - Virtual size: 76B

rt_esi Size: 512B - Virtual size: 64B

rt_ecx Size: 512B - Virtual size: 24B

.data Size: 3KB - Virtual size: 644KB

.rsrc Size: 142KB - Virtual size: 141KB

rt_ec Size: 47KB - Virtual size: 46KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 28KB

rt_eax
Size: 512B - Virtual size: 442B

rt_esp
Size: 512B - Virtual size: 28B

rt_edx
Size: 512B - Virtual size: 59B

rt_ebp
Size: 512B - Virtual size: 76B

rt_ebx
Size: 1024B - Virtual size: 676B

rt_ea
Size: 512B - Virtual size: 64B

rt_edi
Size: 512B - Virtual size: 76B

rt_esi
Size: 512B - Virtual size: 64B

rt_ecx
Size: 512B - Virtual size: 24B

.data
Size: 3KB - Virtual size: 644KB

.rsrc
Size: 142KB - Virtual size: 141KB

rt_ec
Size: 47KB - Virtual size: 46KB

.reloc
Size: 2KB - Virtual size: 1KB