8e15ddf87e14597ad375c15f2e168b2b35ad1011324f1923541f11dcf8d8d07c

Sharing

Copy URL

Twitter E-mail

General

Target

8e15ddf87e14597ad375c15f2e168b2b35ad1011324f1923541f11dcf8d8d07c
Size

784KB
MD5

8b8b6118533702d3dddea37ed0120041
SHA1

cbc0bfb0f9e655b50d56bc0f99e5672786489206
SHA256

8e15ddf87e14597ad375c15f2e168b2b35ad1011324f1923541f11dcf8d8d07c
SHA512

847ea46e481f7d2e71707d37a86b54539582ba2c861c8b6c4fc3b9d9ef950cdc8a932b53044cc747bcd72f9c7d696c0e17b0d3cfa5ddd59037c923346703c53d
SSDEEP

24576:t4s9tKpbEPKUCZt3lIXCh1s0m0/yTCu7VMAVOKhx:t4s/i6KUst3lIXC5iCuvV

Score

N/A

Malware Config

Signatures

Files

8e15ddf87e14597ad375c15f2e168b2b35ad1011324f1923541f11dcf8d8d07c
.exe windows x86

df47ed8cfed420077f32f0575cdf0276

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItemTextW
OpenDesktopW
ReuseDDElParam
GetDialogBaseUnits
CreateAcceleratorTableW
PtInRect
WINNLSEnableIME
MessageBoxA
UnionRect
RegisterClassA
SendNotifyMessageA
MapVirtualKeyA
GetWindowModuleFileNameW
GetClientRect
SendNotifyMessageW
ShowWindow
RegisterClassExA
AttachThreadInput
DefMDIChildProcA
DestroyWindow
LoadCursorW
FrameRect
GetThreadDesktop
GetProcessWindowStation
GetInputState
MapVirtualKeyW
UnhookWindowsHook
CreateWindowExA
IsMenu
SetDlgItemTextA
DefWindowProcA
TileChildWindows
IsWindow
ClipCursor
CreateWindowExW
CallWindowProcA
MessageBoxIndirectW
DrawTextExW
EnumClipboardFormats
CallMsgFilterW
GetMenuItemInfoA
IsCharUpperA
SetCaretPos
CharNextW
IsCharAlphaW

kernel32

GetTickCount
GetSystemTime
SetConsoleCursorPosition
HeapAlloc
SetLastError
CloseHandle
WideCharToMultiByte
InterlockedExchange
GetCommandLineA
UnhandledExceptionFilter
FlushFileBuffers
InterlockedDecrement
FreeEnvironmentStringsW
GetProcAddress
TlsAlloc
ReadFile
InterlockedIncrement
GetVersion
CompareStringA
QueryPerformanceCounter
GetEnvironmentStringsW
HeapReAlloc
ExitProcess
HeapDestroy
GetLocalTime
TerminateProcess
LCMapStringW
CreateMutexA
GetVersionExA
GetCurrentThreadId
GetModuleFileNameA
GetTimeZoneInformation
GetCPInfo
GetStringTypeA
LCMapStringA
SetStdHandle
GetLastError
TlsGetValue
GetCurrentProcess
CompareStringW
LocalShrink
GetStartupInfoA
LoadLibraryA
GetModuleHandleA
GetStringTypeW
GetCurrentThread
IsBadReadPtr
TlsSetValue
SetEnvironmentVariableA
OpenMutexA
EnterCriticalSection
DeleteCriticalSection
GetModuleHandleW
InitializeCriticalSection
GetACP
IsBadWritePtr
VirtualFree
WriteFile
OpenFileMappingA
GetSystemTimeAsFileTime
VirtualAlloc
HeapCreate
RtlUnwind
LeaveCriticalSection
GetSystemInfo
SetHandleCount
VirtualQuery
TlsFree
SetFilePointer
GetFileType
GetOEMCP
HeapFree
GetCurrentProcessId
GetStdHandle
GetEnvironmentStrings
GetCurrentDirectoryW
FreeEnvironmentStringsA
SetConsoleTitleA
MultiByteToWideChar
GlobalReAlloc
CreateMailslotA

comctl32

ImageList_DragEnter
ImageList_Duplicate
CreateStatusWindow
CreateToolbarEx
InitCommonControlsEx
ImageList_Copy
DrawStatusText
DestroyPropertySheetPage

Sections

.text
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 392KB - Virtual size: 391KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df47ed8cfed420077f32f0575cdf0276

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 172KB - Virtual size: 168KB

.rdata Size: 392KB - Virtual size: 391KB

.data Size: 140KB - Virtual size: 138KB

.rsrc Size: 76KB - Virtual size: 72KB

.text
Size: 172KB - Virtual size: 168KB

.rdata
Size: 392KB - Virtual size: 391KB

.data
Size: 140KB - Virtual size: 138KB

.rsrc
Size: 76KB - Virtual size: 72KB