a2b1ef738292bddf52ffa00b3c8d91c4292d8e94e2f0924f94ab31653df93dd0

Sharing

Copy URL Twitter E-mail

General

Target

a2b1ef738292bddf52ffa00b3c8d91c4292d8e94e2f0924f94ab31653df93dd0
Size

535KB
MD5

841c3c76be0e887adfb465c13cd727f7
SHA1

5bba282476337e8162828325681bf529325b2a9f
SHA256

a2b1ef738292bddf52ffa00b3c8d91c4292d8e94e2f0924f94ab31653df93dd0
SHA512

545350b7eabdc1d7964e965b24eeb35f892e00120e4d50c540912cc706307c9cf09d7b290ad3b4df3fb9231c95bcdeb5182a6bdaf92398849cd15c20bf8200d4
SSDEEP

12288:T/s2QzhPbNx9dvXYXHvbcAPFfUlWPJL+wokPSCLuk:T/QhPpx9N4pUMP5+wokp

Score

N/A

Malware Config

Signatures

Files

a2b1ef738292bddf52ffa00b3c8d91c4292d8e94e2f0924f94ab31653df93dd0
.exe windows x86

7eb8c65312a9096527bf0a83a3ca3fd2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

FlushFileBuffers
LCMapStringW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetStringTypeW
SetFilePointer
SetStdHandle
GetConsoleCP
HeapQueryInformation
HeapSize
HeapReAlloc
OutputDebugStringW
LoadLibraryW
OutputDebugStringA
HeapCreate
GetFileType
GetConsoleMode
SetEndOfFile
GetProcessHeap
CloseHandle
CancelIo
EnumDateFormatsA
FindNextFileA
ResetEvent
FindClose
GetProcAddress
GetLastError
FindFirstFileA
GetStdHandle
GetOverlappedResult
ReadFile
CreateEventA
SetConsoleMode
HeapFree
ReadConsoleInputA
WriteFile
WaitForSingleObject
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetLocaleInfoW
HeapAlloc
CreateFileA
WriteConsoleW
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
DecodePointer
GetModuleHandleW
ExitProcess
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetModuleFileNameW
RaiseException
EncodePointer
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapValidate
IsBadReadPtr
InitializeCriticalSectionAndSpinCount
RtlUnwind
MultiByteToWideChar
TlsAlloc
TlsGetValue
TlsSetValue
GetCurrentThreadId
TlsFree
SetLastError
WideCharToMultiByte
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
CreateFileW

user32

GetMonitorInfoA
CallMsgFilterA
DialogBoxParamA
GetDlgItemTextW
SetWindowTextA
DefMDIChildProcA
CharToOemBuffA
DestroyAcceleratorTable
SetTimer
GetSubMenu
DeleteMenu
DrawMenuBar
wsprintfA
SendMessageA
IsWindowEnabled
SetDlgItemInt
GetMenu
EnableMenuItem
MonitorFromWindow
GetDlgItem
SetWindowPos

gdi32

SetWindowExtEx
CreateFontIndirectA
CreateMetaFileA
CreatePalette
CreateBitmap
DeleteObject
SelectObject
CreateCompatibleDC
SetMapMode
GetDIBColorTable
GetTextExtentPointA
CreatePen
GetTextMetricsA
CreateICA
CreateSolidBrush
TextOutA
SetWindowOrgEx

comdlg32

GetOpenFileNameA

advapi32

CryptEnumProviderTypesA

ole32

CreateILockBytesOnHGlobal
CoInitialize

shlwapi

StrNCatA

comctl32

ord17
CreateToolbarEx

secur32

SetContextAttributesA

Sections

.text
Size: 437KB - Virtual size: 437KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.corn
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7eb8c65312a9096527bf0a83a3ca3fd2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

shlwapi

comctl32

secur32

Sections

.text Size: 437KB - Virtual size: 437KB

.rdata Size: 48KB - Virtual size: 47KB

.data Size: 12KB - Virtual size: 19KB

.corn Size: 3KB - Virtual size: 2KB

.rsrc Size: 33KB - Virtual size: 33KB

.text
Size: 437KB - Virtual size: 437KB

.rdata
Size: 48KB - Virtual size: 47KB

.data
Size: 12KB - Virtual size: 19KB

.corn
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 33KB - Virtual size: 33KB