ba0e4f5c35c2971f540dfa1c11a4e689b1a2eed8a547d0830bdadd7dcb3798d8

Sharing

Copy URL Twitter E-mail

General

Target

ba0e4f5c35c2971f540dfa1c11a4e689b1a2eed8a547d0830bdadd7dcb3798d8
Size

307KB
MD5

93db8140b3e6bf86a189fc46d3c849f0
SHA1

fd65059cf5f72a723f830160109d99af7e18b8ed
SHA256

ba0e4f5c35c2971f540dfa1c11a4e689b1a2eed8a547d0830bdadd7dcb3798d8
SHA512

71b8cb0605f04952e8adf0345a5b7a4eb2e9821a99a5835219e0428d49c6c7a7ea3e5b5f6ef530f73ab06e95e51e9ef42594fd795f2c3d94738104c5bb5faa5a
SSDEEP

6144:1E1H51ywNsXldhk2aqCE7H7rxDvQzoA79fD9TqyYlgQ7cIfSn6j:uHywNsXlA2VVb7VczZxTxRQ7cb

Score

N/A

Malware Config

Signatures

Files

ba0e4f5c35c2971f540dfa1c11a4e689b1a2eed8a547d0830bdadd7dcb3798d8
.exe windows x86

c3efd4e92f384062b29464a7c91217d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
GetConsoleScreenBufferInfo
CreateFileMappingW
CloseHandle
lstrcpyA
SetEndOfFile
ReadFile
SetFilePointer
WriteConsoleW
LCMapStringW
CreateFileA
IsProcessorFeaturePresent
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LoadLibraryW
HeapReAlloc
HeapSize
GetProcAddress
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
WriteFile
RaiseException
MultiByteToWideChar
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetLocaleInfoW
GetUserDefaultLCID
IsValidCodePage
GetOEMCP
GetACP
GetCurrentThreadId
GetLastError
GetStdHandle
lstrcatA
CreateFileW
EnumSystemCodePagesA
HeapCreate
LeaveCriticalSection
InitAtomTable
IsBadReadPtr
GetModuleHandleW
SetConsoleScreenBufferSize
HeapAlloc
GetCurrentProcess
AllocConsole
UnmapViewOfFile
MapViewOfFile
GetSystemTimeAsFileTime
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetCPInfo
RtlUnwind
InterlockedIncrement
InterlockedDecrement
Sleep
InitializeCriticalSection
DeleteCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetCommandLineA
HeapSetInformation
GetStartupInfoW
SetHandleCount
HeapFree
ExitProcess
GetProcessHeap

user32

GetWindow
GetDialogBaseUnits
GetScrollPos
SetScrollInfo
GetPropW
SetWindowTextW
EndPaint
DestroyWindow
SetCursor
SetTimer
InsertMenuItemA
FillRect
PostMessageW
DialogBoxParamW
LoadMenuA
BeginPaint
SetScrollRange
SetPropW
GetMenu
MessageBoxA
InvalidateRect
GetWindowLongW
CreateWindowExA
SetScrollPos
GetDlgItem
SetWindowLongW
EndDialog
DefWindowProcA
CreatePopupMenu
GetSysColorBrush
IsDlgButtonChecked
IsWindow
MessageBoxW
SetWindowTextA
SendMessageW
UpdateWindow

gdi32

FrameRgn
DeleteDC
DeleteObject
SelectObject
CreateCompatibleDC
CreateRectRgnIndirect
CreateCompatibleBitmap
CreateFontW
GetStockObject
CreateSolidBrush
TextOutA
BitBlt

ws2_32

WSAStartup
WSACleanup

winmm

mciSendCommandA

Sections

.text
Size: 157KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3efd4e92f384062b29464a7c91217d2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ws2_32

winmm

Sections

.text Size: 157KB - Virtual size: 157KB

.rdata Size: 142KB - Virtual size: 142KB

.data Size: 5KB - Virtual size: 18KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 157KB - Virtual size: 157KB

.rdata
Size: 142KB - Virtual size: 142KB

.data
Size: 5KB - Virtual size: 18KB

.rsrc
Size: 1KB - Virtual size: 1KB