4ec90e011765028b709df4312df56e13d716d21e3a7c8083dfa42e047994c177

Sharing

Copy URL

Twitter E-mail

General

Target

4ec90e011765028b709df4312df56e13d716d21e3a7c8083dfa42e047994c177
Size

169KB
MD5

849e8469a4d0e267ab9f514f24f3fd66
SHA1

e121793e9c793474b06d022ddfab2bb21555ab6d
SHA256

4ec90e011765028b709df4312df56e13d716d21e3a7c8083dfa42e047994c177
SHA512

d6467e013857b3f4f3d06a9f84f6df923a13b4d2b4068053fa2cd61f98664b6e80d2ec5de2698220a5aae245fad660eca8f118b4a834ab86115b943bf58bf8d2
SSDEEP

3072:mKKT+1Eft6S5IxOps+Wre8TqHlbriWVE/2p20yYS3JmEZl3QKbR3AMZaECyYQY:mKKTH6s8Yv8TeFVfVyYamSl3J9JlaT

Score

N/A

Malware Config

Signatures

Files

4ec90e011765028b709df4312df56e13d716d21e3a7c8083dfa42e047994c177
.exe windows x86

d1a80eaa220f56402aa517e05135daa0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

ReleaseDC
ReleaseDC
GetDC
ReleaseDC
ReleaseDC
GetDC
ReleaseDC
ReleaseDC
ReleaseDC
LoadStringA
PackDDElParam
ReleaseDC
GetDC
GetDC
GetDC
GetDC
GetDC
GetDC
ReleaseDC
ReleaseDC

kernel32

ReadProcessMemory
CreateProcessW
VirtualProtectEx
SleepEx
Sleep
LoadLibraryExA
VirtualProtect
TerminateProcess
LoadLibraryExW
VirtualProtect
LoadLibraryA
ReleaseMutex
GetStartupInfoA
GetStartupInfoW
LoadLibraryA
CreateProcessW
CreateFileA
GetStartupInfoW
LoadLibraryExA
SleepEx
GetProcAddress
LoadLibraryA
VirtualProtect
GetProfileIntW
TransmitCommChar
LoadLibraryExA
WaitForSingleObject
ReadProcessMemory
LoadLibraryA
ReadFile
GetStartupInfoW
VirtualProtect
WriteProcessMemory
CreateFileA
WaitForSingleObject
CreateFileA
WriteProcessMemory
VirtualProtectEx
LoadLibraryA
GetStartupInfoA
CreateFileA
VirtualProtectEx
LoadLibraryA
VirtualProtect
ReleaseMutex
CreateProcessW
ReadFile
GetSystemTimeAsFileTime
SleepEx
WaitForSingleObject
TerminateProcess
LoadLibraryExW
VirtualProtectEx
ReadFile
VirtualProtect
VirtualProtect
VirtualProtect
GetSystemTimeAsFileTime
VirtualProtectEx
TerminateProcess
ReleaseMutex
TerminateProcess
GetStartupInfoA
GetSystemTime
VirtualProtectEx
TerminateProcess
ReadFile
GetSystemTimeAsFileTime
TerminateProcess
SleepEx
ReadFile
SleepEx
VirtualProtect
LoadLibraryExA
CreateFileA
GetSystemTime
WriteProcessMemory
LoadLibraryA
LoadLibraryExA
GetStartupInfoW
GetStartupInfoA
LoadLibraryA
CreateProcessA
CreateProcessW
VirtualProtect
CreateFileA
TerminateProcess
ReleaseMutex
VirtualProtectEx
GetSystemTime
Sleep
LoadLibraryA
CreateProcessW
VirtualProtectEx
GetStartupInfoW
TerminateProcess
GetStartupInfoW
TerminateProcess
LoadLibraryA
VirtualProtectEx
LoadLibraryA
GetStartupInfoW
LoadLibraryA
ReadFile
CreateFileA
TerminateProcess
Sleep
ReadProcessMemory
ReadFile
LoadLibraryExA
ReadFile
WaitForSingleObject
GetSystemTime
LoadLibraryExA
VirtualProtect
GetStartupInfoA
CreateProcessA
GetSystemTime
Sleep
VirtualProtect
WriteProcessMemory
CreateProcessW
CreateProcessA
VirtualProtectEx
WriteProcessMemory
CreateProcessW
VirtualProtectEx
LoadLibraryA
VirtualProtectEx
CreateProcessA
GetSystemTimeAsFileTime
ReadFile
GetStartupInfoA
VirtualProtect
CreateProcessW
Sleep
GetStartupInfoW
ReadFile
TerminateProcess
GetSystemTimeAsFileTime
WaitForSingleObject
Sleep
GetStartupInfoW
VirtualProtectEx
ReadFile

Sections

.text
Size: 6KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

czn
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

EtX
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

qqD
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d1a80eaa220f56402aa517e05135daa0

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 6KB - Virtual size: 184KB

.data Size: 4KB - Virtual size: 4KB

czn Size: 2KB - Virtual size: 4KB

EtX Size: 2KB - Virtual size: 4KB

qqD Size: 2KB - Virtual size: 4KB

.rsrc Size: 152KB - Virtual size: 151KB

.text
Size: 6KB - Virtual size: 184KB

.data
Size: 4KB - Virtual size: 4KB

czn
Size: 2KB - Virtual size: 4KB

EtX
Size: 2KB - Virtual size: 4KB

qqD
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 152KB - Virtual size: 151KB