6c266d3beacefb007b065b97b662f43588ff8be5f03ee632b8000aeb27412d5f

Sharing

Copy URL Twitter E-mail

General

Target

6c266d3beacefb007b065b97b662f43588ff8be5f03ee632b8000aeb27412d5f
Size

324KB
MD5

d2c038bc785a6d08ea275dc08f83acc9
SHA1

2dcf2aa5e2d459bd04ccb4238c95ae28e30fe6bc
SHA256

6c266d3beacefb007b065b97b662f43588ff8be5f03ee632b8000aeb27412d5f
SHA512

b4158115c1b5ae2ced8e6087c7125c34ba0fe4a1eb3621d1065d9d123e0dd0df11f708ceeabdd393315fd6baff4f26bd8acce9423915f3f067590e9d1e21bea5
SSDEEP

6144:9xAYabFSaVHKDhsk56TeSPvwThnE7/yP7AKD/LVFU2vR2xRpsYlB5NrYd24d/:9xoFSaN0R56TeyAhnS6zvDVFU2vR29p0

Score

N/A

Malware Config

Signatures

Files

6c266d3beacefb007b065b97b662f43588ff8be5f03ee632b8000aeb27412d5f
.exe windows x86

c9473a6de8eb32fe066e213ebbcfec65

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
ExitProcess
InterlockedDecrement
HeapFree
SetLastError
IsBadReadPtr
GetTimeZoneInformation
VirtualAlloc
GetSystemTime
OpenMutexA
SetConsoleCtrlHandler
CloseHandle
HeapDestroy
LeaveCriticalSection
LoadLibraryA
GetModuleFileNameA
GetTickCount
ReadFile
WriteFile
OutputDebugStringA
GetStartupInfoA
HeapValidate
SetStdHandle
CompareStringW
InterlockedExchange
GetCommandLineA
CreateMutexA
GetLastError
GetACP
GetCurrentThread
GetModuleHandleA
TlsSetValue
TlsGetValue
HeapCreate
HeapReAlloc
TlsAlloc
FlushFileBuffers
GetEnvironmentStringsW
InterlockedIncrement
GetLocalTime
GetVersion
MultiByteToWideChar
GetSystemTimeAsFileTime
CompareStringA
LCMapStringA
GetFileType
GetStringTypeA
VirtualQuery
SetFilePointer
GetStdHandle
GetStringTypeW
TerminateProcess
LCMapStringW
GetCurrentProcess
QueryPerformanceCounter
IsBadWritePtr
HeapAlloc
FreeEnvironmentStringsW
WideCharToMultiByte
RtlUnwind
VirtualFree
SetHandleCount
GetOEMCP
FreeEnvironmentStringsA
GetProcAddress
LoadLibraryExW
GetCPInfo
DebugBreak
InitializeCriticalSection
TlsFree
GetEnvironmentStrings
EnterCriticalSection
GetCurrentThreadId
GetCurrentProcessId
UnhandledExceptionFilter
SetEnvironmentVariableA

comctl32

DrawStatusText
ImageList_Replace
ImageList_SetImageCount
ImageList_Draw
ImageList_DragShowNolock
ImageList_AddMasked
ImageList_Copy
InitCommonControlsEx
CreateMappedBitmap
ImageList_GetIcon

user32

DestroyWindow
GetKeyboardLayout
WinHelpA
CreateWindowExW
GetClassLongA
RegisterClassExA
GetPriorityClipboardFormat
CreateWindowStationA
GetMenuContextHelpId
UnregisterClassW
GetWindowTextW
MessageBoxA
DlgDirListW
FindWindowW
InflateRect
InsertMenuItemA
ShowWindow
RealChildWindowFromPoint
DefWindowProcA
RegisterClassA
EnumDisplaySettingsW
SetProcessDefaultLayout

Sections

.text
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9473a6de8eb32fe066e213ebbcfec65

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 96KB - Virtual size: 93KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 88KB - Virtual size: 111KB

.rsrc Size: 68KB - Virtual size: 65KB

.text
Size: 96KB - Virtual size: 93KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 88KB - Virtual size: 111KB

.rsrc
Size: 68KB - Virtual size: 65KB