c936eb41da5da664cb6482cf4b809dab2a9858821998d7e0a4b2b8ea6c76fde6

Sharing

Copy URL Twitter E-mail

General

Target

c936eb41da5da664cb6482cf4b809dab2a9858821998d7e0a4b2b8ea6c76fde6
Size

109KB
MD5

8452a616e51cdfe90d508e098966dacc
SHA1

65727316f6736f366cd60251c96b6716b322e55f
SHA256

c936eb41da5da664cb6482cf4b809dab2a9858821998d7e0a4b2b8ea6c76fde6
SHA512

e2b38065a68e38477df5771f0db82a608f410301bbf67d7bf2c2636ec5cc773c745be5bd6ddc38884c18798c447d623bb764f1e5f226422a7a8c42ef373b8c69
SSDEEP

1536:imu5MRTgswxS7oQWFogtFhrnMY9XFgwIQf9NLn9C8KtB46qwEGQtLeJHkmL:3uY7oQWFoCrnMY0iYLtB46HKVer

Score

N/A

Malware Config

Signatures

Files

c936eb41da5da664cb6482cf4b809dab2a9858821998d7e0a4b2b8ea6c76fde6
.exe windows x86

d8a5977fedb1231feecfe2a3916d3310

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
WaitForSingleObject
CreateRemoteThread
WriteProcessMemory
CreateThread
GetLastError
CreateMutexA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetModuleFileNameA
Sleep
FindFirstFileA
Process32Next
Process32First
CreateToolhelp32Snapshot
CloseHandle
FlushFileBuffers
SetStdHandle
GetOEMCP
GetACP
HeapReAlloc
VirtualAlloc
SetFilePointer
GetStringTypeW
GetStringTypeA
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetFileAttributesA
GetVersionExA
GetCPInfo
WriteFile
RtlUnwind
HeapFree
InterlockedDecrement
InterlockedIncrement
ExitProcess
TerminateProcess
GetCurrentProcess
GetStartupInfoA
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
HeapAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
DeleteFileA

user32

DialogBoxParamA
GetWindowLongA
SetWindowLongA
SetWindowPos
SetDlgItemTextA
KillTimer
PostMessageA
SetWindowTextA
GetWindowRect
GetSystemMetrics
MoveWindow
SendDlgItemMessageA
SetTimer
GetDlgItem
EnableWindow
EndDialog
MessageBoxA

gdi32

SetBkMode
CreateFontA
CreateSolidBrush
SetTextColor

shell32

ShellExecuteA

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d8a5977fedb1231feecfe2a3916d3310

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

wininet

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 5KB - Virtual size: 11KB

.rsrc Size: 20KB - Virtual size: 20KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 5KB - Virtual size: 11KB

.rsrc
Size: 20KB - Virtual size: 20KB

.rmnet
Size: 56KB - Virtual size: 60KB