049ec09957268532b5a111981e9530211b5f2fc760f5de541f5f00fd48af9187

General

Target

049ec09957268532b5a111981e9530211b5f2fc760f5de541f5f00fd48af9187
Size

468KB
MD5

e9a4779874aca45d23ad275f9cbac243
SHA1

7ad4bed69b63f66ad9bb64ec731d8e8ae02c0870
SHA256

049ec09957268532b5a111981e9530211b5f2fc760f5de541f5f00fd48af9187
SHA512

0e76b267d2d1abccc1c1f893d52fb559515318d593c4f78b44cdb63a369e0c2b0de193ada6c24cc79052cb9e4dd1d881d280373b931a765b6152b4f356f20698
SSDEEP

6144:q8YHGfViGYlvVUBHQ9g3j2/LEKtSjhjes3xXe8YJgugoK6a9f9lXNB3AV7n:q8QGfVkUBVqqjes3xcg79vNB3AZ

Score

N/A

Malware Config

Signatures

Files

049ec09957268532b5a111981e9530211b5f2fc760f5de541f5f00fd48af9187
.exe windows x86

64a952e4064b0ae435dc32f28cbf7dd9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
GetModuleHandleA
VirtualAlloc
GetProcAddress
VirtualFree
HeapFree
TerminateThread
WaitForSingleObject
GetProcessHeap
OpenMutexA
HeapDestroy
GetLocalTime
VirtualUnlock
GetLastError
OpenSemaphoreA
VirtualQuery
InterlockedExchange
VirtualProtect
GetLocaleInfoA
HeapSize
RtlUnwind
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
LocalReAlloc
VirtualAllocEx
GetStringTypeA
RaiseException
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapCreate
HeapAlloc
HeapReAlloc
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
GetSystemInfo

user32

GetLastActivePopup
FindWindowA
GetWindowInfo
GetWindow
GetSysColorBrush
LoadIconA
GetDesktopWindow

gdi32

PatBlt

winmm

joySetCapture

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 396KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 217KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64a952e4064b0ae435dc32f28cbf7dd9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 396KB - Virtual size: 392KB

.data Size: 24KB - Virtual size: 217KB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 396KB - Virtual size: 392KB

.data
Size: 24KB - Virtual size: 217KB

.rsrc
Size: 16KB - Virtual size: 13KB