15eb992b0c123d50ab68f95f1a89aa7bb9b80cdcf8b26f251343393bd9d88f91

Sharing

Copy URL Twitter E-mail

General

Target

15eb992b0c123d50ab68f95f1a89aa7bb9b80cdcf8b26f251343393bd9d88f91
Size

284KB
MD5

1e1891e2ef10280763d3609e4fe4e064
SHA1

63cdd05708541d2e5981ac3e862dc5a0cd2e09ff
SHA256

15eb992b0c123d50ab68f95f1a89aa7bb9b80cdcf8b26f251343393bd9d88f91
SHA512

ffdcd2662225be57c208e63489efa7f31a00444752ee65e82d0487d53916a96c73af12fe8e3b0d3f2df9011cf277fba33c1817a764fda1a1290247580b6b9a58
SSDEEP

3072:iJTB/zqlAi0pS7hxdDyJsezT89zCsHob:iNGF0pS4sezT89zh

Score

N/A

Malware Config

Signatures

Files

15eb992b0c123d50ab68f95f1a89aa7bb9b80cdcf8b26f251343393bd9d88f91
.exe windows x86

3dde60a96c846839192f0864e54d3a04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
CreateDirectoryA
DeleteFileA
MoveFileA
GetVersionExA
GetModuleFileNameA
ExitProcess
TerminateProcess
GetCurrentProcess
HeapAlloc
HeapReAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
EnterCriticalSection
LeaveCriticalSection
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
VirtualAlloc
RtlUnwind
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
WriteFile
CreateMutexA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetFilePointer
CreateFileA
SetStdHandle
FlushFileBuffers
GetProcAddress
LoadLibraryA
SetEndOfFile
CloseHandle
ReleaseMutex
DeleteCriticalSection
InitializeCriticalSection
ReadFile
GetLastError

user32

SetWindowTextA
SetFocus
GetDlgItem
EndDialog
CheckRadioButton
MessageBoxA
DialogBoxParamA
IsDlgButtonChecked

shell32

SHGetSpecialFolderPathA
ShellExecuteExA

comctl32

ord17

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 216KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3dde60a96c846839192f0864e54d3a04

Headers

File Characteristics

Imports

kernel32

user32

shell32

comctl32

Sections

.text Size: 40KB - Virtual size: 38KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 16KB - Virtual size: 22KB

.data1 Size: 4KB - Virtual size: 1KB

.rsrc Size: 216KB - Virtual size: 214KB

.text
Size: 40KB - Virtual size: 38KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 16KB - Virtual size: 22KB

.data1
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 216KB - Virtual size: 214KB