e852199bbc1c0c678c55247ae98a8195f15b743ec815a57aed07620e8ccc657c

Sharing

Copy URL Twitter E-mail

General

Target

e852199bbc1c0c678c55247ae98a8195f15b743ec815a57aed07620e8ccc657c
Size

552KB
MD5

7aea9f0a584e079a713a35081aafd07f
SHA1

d59d1ea59f26a3bcf70be7ab43a871068264a960
SHA256

e852199bbc1c0c678c55247ae98a8195f15b743ec815a57aed07620e8ccc657c
SHA512

f5388ec4b14edd0e1c316d16cfec568bff8c5b0c2fcbad882fd165b2f08c8d686584a085e085f0d7f6b100a0d76fa647de781c81ac45c3b8b54e2a74b4332c9c
SSDEEP

6144:9mQ2kH5b2QVfytYhOtn3De/FdkK5DVvtw/dWFSOHN51FlAYumFA9:9NH5xalnTMVhvtw1Ws871rJumW9

Score

N/A

Malware Config

Signatures

Files

e852199bbc1c0c678c55247ae98a8195f15b743ec815a57aed07620e8ccc657c
.exe windows x86

265c40c249ef2ae4e4b39cd2401fc295

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetVersionExA
CloseHandle
SetFileAttributesA
GetACP
GetLocaleInfoA
GetLastError
VirtualQuery
GetSystemInfo
VirtualProtect
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetStdHandle
LCMapStringW
LCMapStringA
LoadLibraryA
GetCPInfo
GetOEMCP
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapCreate
HeapDestroy
GetFileType
SetFilePointer
GetModuleHandleA
VirtualAlloc
ExitProcess
VirtualFree
CreateFileW
CreateFileA
WriteFile
ReadFile
GetSystemTimeAsFileTime
SetHandleCount
GetEnvironmentStringsW
RtlUnwind
GetStartupInfoA
GetCommandLineA
HeapAlloc
GetProcAddress
HeapFree
HeapReAlloc
TerminateProcess
HeapSize
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
FlushFileBuffers

user32

MessageBoxA
RegisterClassExA
GetDesktopWindow
CreateWindowExA
LoadImageA
wsprintfA
SetWindowRgn
GetClientRect
MoveWindow
ShowWindow
LoadStringA
TranslateMessage
DispatchMessageA
UnregisterClassA
LoadCursorA
SetCursor
BeginPaint
EndPaint
PostQuitMessage
GetDC
PostMessageA
ReleaseDC
DefWindowProcA
GetMessageA

gdi32

GetObjectA
GetBitmapBits
ExtCreateRegion
CombineRgn
DeleteObject
GetTextExtentPoint32A
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
SetBkMode
TextOutA
SetTextColor

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

ShellExecuteA

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 504KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

265c40c249ef2ae4e4b39cd2401fc295

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 24KB

.rsrc Size: 504KB - Virtual size: 500KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 24KB

.rsrc
Size: 504KB - Virtual size: 500KB