ee3f1bb0dd8187d9c6fa60b2f527dfbcdf1ef74fab379f9b014036f10d81a6e4

Sharing

Copy URL Twitter E-mail

General

Target

ee3f1bb0dd8187d9c6fa60b2f527dfbcdf1ef74fab379f9b014036f10d81a6e4
Size

124KB
MD5

8502a24210e3bbd053571dd29e8713a0
SHA1

742e2bc91fc7b6dbb0136fe8b2d656428e9a5267
SHA256

ee3f1bb0dd8187d9c6fa60b2f527dfbcdf1ef74fab379f9b014036f10d81a6e4
SHA512

6b5cf1765a9cb62e709c0eca281df377fe9476c3e70150b3c165e9f4244a5e3215707737549bfbe7edbaf78ed4c53289253fbd4cad728c1b60994a0e1a864d36
SSDEEP

1536:YUKKzB5HdlXnXJPThmxQdg559MycSsxeAA5A6gbHIRjQoye7TVkEHUMbkJgYYuA9:nHzBRhTKYyyych7Idu7QUMbkjYKEn1

Score

N/A

Malware Config

Signatures

Files

ee3f1bb0dd8187d9c6fa60b2f527dfbcdf1ef74fab379f9b014036f10d81a6e4
.exe windows x86

0407f4d0d6b40eb916ee75db780e5164

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
ReadFile
SetEndOfFile
HeapSize
RtlUnwind
GetCPInfo
GetOEMCP
GetACP
FlushFileBuffers
SetStdHandle
HeapReAlloc
GetSystemInfo
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
HeapAlloc
SetFilePointer
GetCurrentProcess
TerminateProcess
WriteFile
GetLastError
LoadLibraryA
FreeLibrary
GetTempPathA
CopyFileA
GetVersionExA
CreateProcessA
WaitForSingleObject
DeleteFileA
GetTickCount
WritePrivateProfileStringA
CreateFileA
SetFileTime
CloseHandle
lstrcpyA
GetModuleHandleA
GetProcAddress
VirtualAlloc
ExitProcess
GetStartupInfoA
GetCommandLineA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapFree
VirtualQuery

user32

IsWindow
PostMessageA
MessageBoxA
UpdateWindow
GetMessageA
LoadIconA
SendMessageA
SetCursor
GetCursorPos
PostQuitMessage
GetForegroundWindow
DialogBoxParamA
PeekMessageA
TranslateMessage
DispatchMessageA
RegisterClassA
CreateWindowExA
SetTimer
ShowWindow
EqualRect
MoveWindow
DestroyWindow
DefWindowProcA
CheckDlgButton
EndDialog
IsDlgButtonChecked
LoadBitmapA
GetClientRect
BeginPaint
EndPaint
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowRect
GetSystemMetrics

gdi32

GetStockObject
CreateSolidBrush
DeleteObject
GetObjectA
SelectObject
StretchBlt
DeleteDC
GetClipBox
GetDCOrgEx
CreateCompatibleDC

advapi32

RegOpenKeyA
RegCloseKey
RegSetValueExA
RegQueryValueExA
GetUserNameA
RegOpenKeyExA

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0407f4d0d6b40eb916ee75db780e5164

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 28KB - Virtual size: 26KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 80KB - Virtual size: 80KB

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 80KB - Virtual size: 80KB