c32d1f6693973367d76088501d10cc8441a465da4cb3b8a32c2d5b68385aef10

Sharing

Copy URL

Twitter E-mail

General

Target

c32d1f6693973367d76088501d10cc8441a465da4cb3b8a32c2d5b68385aef10
Size

304KB
MD5

537541cd5496ce2bc0147e4c39accd04
SHA1

5e2e4dec219bcc35a0576b2d3872dba81d3d5f1d
SHA256

c32d1f6693973367d76088501d10cc8441a465da4cb3b8a32c2d5b68385aef10
SHA512

fb94be3eb83c2014c07da31b5131a69305860c3edc81dbe61257305c4a0f1fe14f26b860697cdab89b50ddfaa1deb225386bf100201d69d52c5ab40c768c1ae9
SSDEEP

6144:P0J80h9yOhn1rUGDva5hzOZi76H+l2fcgt5qOdpBjT/XYODNi:P0ph4ODDvanzmFqCHjTAORi

Score

N/A

Malware Config

Signatures

Files

c32d1f6693973367d76088501d10cc8441a465da4cb3b8a32c2d5b68385aef10
.exe windows x86

c00797f130f3769c6aad83379cd9e6bb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

EnumDateFormatsA
CancelIo
OutputDebugStringA
CloseHandle
CreateFileW
HeapReAlloc
WriteConsoleW
SetStdHandle
HeapSize
RtlUnwind
GetStringTypeW
MultiByteToWideChar
LCMapStringW
GetConsoleMode
GetConsoleCP
SetFilePointer
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
GetLastError
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
EncodePointer
GetModuleFileNameW
GetStdHandle
WriteFile
DecodePointer
ExitProcess
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent
HeapFree
IsDebuggerPresent
SetUnhandledExceptionFilter
lstrcatA
HeapCreate
CreateEventA
Sleep
WaitForSingleObject
HeapAlloc
GetCurrentProcess
QueryPerformanceCounter
UnhandledExceptionFilter
TerminateProcess
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineA
FlushFileBuffers

user32

EndDeferWindowPos
GetWindowThreadProcessId
GetDlgItemTextA
LoadCursorA
GetWindow
SetScrollInfo
EndPaint
DestroyWindow
GetMessageA
CloseClipboard
SetTimer
HideCaret
GetWindowRect
RegisterClassExA
PostQuitMessage
SendDlgItemMessageA
FillRect
GetTopWindow
KillTimer
DrawTextA
LoadStringA
LoadBitmapA
LoadIconA
GetClipboardFormatNameA
FindWindowExA
GetClientRect
CreateMenu
SendMessageA
EnumClipboardFormats
BeginPaint
GetDC
TranslateMessage
GetMenu
OffsetRect
SetRect
CheckMenuRadioItem
SetWindowLongA
MessageBoxA
InvalidateRect
GetWindowLongA
GetClipboardData
GetWindowTextW
CreateWindowExA
ReleaseDC
EndDialog
DefWindowProcA
ShowWindow
IsDlgButtonChecked
CreateDialogParamW
IsWindow
FindWindowExW
DispatchMessageA
DefDlgProcA
OpenClipboard
DeferWindowPos
BeginDeferWindowPos
IsWindowVisible
LoadImageA
UpdateWindow
DestroyMenu
FindWindowA

gdi32

DeleteObject
GetRegionData
SelectObject
GetBkColor
GetTextMetricsA
GetObjectA
CreateSolidBrush

shell32

SHGetMalloc

pdh

PdhOpenQueryA
PdhCloseQuery
PdhAddCounterW
PdhCollectQueryData
PdhGetFormattedCounterValue

dbghelp

EnumerateLoadedModules

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.todata
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ras
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c00797f130f3769c6aad83379cd9e6bb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

pdh

dbghelp

Sections

.text Size: 53KB - Virtual size: 53KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 11KB

.todata Size: 193KB - Virtual size: 192KB

.ras Size: 12KB - Virtual size: 11KB

.rsrc Size: 14KB - Virtual size: 14KB

.reloc Size: 9KB - Virtual size: 8KB

.text
Size: 53KB - Virtual size: 53KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 11KB

.todata
Size: 193KB - Virtual size: 192KB

.ras
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 14KB - Virtual size: 14KB

.reloc
Size: 9KB - Virtual size: 8KB