0c610c45e27db7613ca7671761fd97aa315c7d590baf8d518ab9978220ff0b7c

Sharing

Copy URL Twitter E-mail

General

Target

0c610c45e27db7613ca7671761fd97aa315c7d590baf8d518ab9978220ff0b7c
Size

1.4MB
MD5

9315a40169ef7d0b45b401d5f3cb5f7d
SHA1

45cc52e1c5b9063968b2f21ec7f3ba4875960168
SHA256

0c610c45e27db7613ca7671761fd97aa315c7d590baf8d518ab9978220ff0b7c
SHA512

21f8255729b9af2dd27a916d8528d590089b87a4268dc25a10c8d3c5ad4f2cd91b02662ac0e4f596f69377a7bc1af0654e108277a00eccb7b366a7828a49a301
SSDEEP

24576:4KLp+WSLMcJFtGOCQzCy8w49po3XbI65rwk+3RXHJvt0JmOcnO5kfdqCWszuf4:hSIcJ/GOz8/9po3XfrwksVtELcnRlWsJ

Score

N/A

Malware Config

Signatures

Files

0c610c45e27db7613ca7671761fd97aa315c7d590baf8d518ab9978220ff0b7c
.exe windows x86

2dc713d18ab8db5bb9e75af5bfb24ae7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetVersion
GetModuleHandleA
GetLastError
GetCurrentProcessId
GetCommandLineA
GetCurrentThread
GetCurrentThreadId
ExitProcess
HeapAlloc
GetProcessHeap
GetOEMCP
VirtualAlloc
Sleep
VirtualFree
HeapCreate
IsValidCodePage
GetEnvironmentStrings
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
RaiseException
InterlockedCompareExchange
HeapSize
GetCPInfo
LockResource
SizeofResource
CreateProcessW
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
GetConsoleCP
lstrlenA
GetSystemInfo
UnmapViewOfFile
SetStdHandle
LoadLibraryExW
LeaveCriticalSection
GetFileType
GetTimeZoneInformation
RemoveDirectoryA
GlobalLock
FindFirstFileW
CreateFileMappingA
FindFirstFileA
GetProcAddress
DeleteFileW
DeleteFileA
LCMapStringW
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
SetEvent
EnterCriticalSection
HeapFree
WriteConsoleW
SetEndOfFile
VirtualQuery
SetUnhandledExceptionFilter
TerminateProcess
CreateFileA
CreateThread
CreateMutexA
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
SetHandleCount
GetModuleFileNameA
IsDebuggerPresent
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
GetTempPathA
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetExitCodeProcess
GetFileAttributesW
HeapDestroy
FindNextFileA
WaitForSingleObject
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle

user32

SetCursor
wsprintfA
InvalidateRect
IsWindowVisible
SystemParametersInfoA
GetSysColor
MessageBoxA
SetForegroundWindow
SendMessageA
LoadIconA
ScreenToClient
GetDlgItem
GetSubMenu
EndDialog
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
BeginPaint
SetCapture
SetFocus
EndPaint
FillRect
GetWindowLongA
EnableMenuItem
TranslateMessage
EnableWindow
ShowWindow
UpdateWindow
GetParent
DestroyWindow
ReleaseDC
GetDC

Sections

.text
Size: 1.3MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2dc713d18ab8db5bb9e75af5bfb24ae7

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 1.3MB - Virtual size: 1.7MB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 60KB - Virtual size: 60KB

.text
Size: 1.3MB - Virtual size: 1.7MB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 60KB - Virtual size: 60KB