6efc6cc54226ade4c2ce4f841cf8f5cfc139583a50175b6e1e78009feb41d36f

Sharing

Copy URL Twitter E-mail

General

Target

6efc6cc54226ade4c2ce4f841cf8f5cfc139583a50175b6e1e78009feb41d36f
Size

201KB
MD5

92fc80ac6d3499cbd7fce6dd9f42cc9b
SHA1

c28189040bf61c0cfbe8ab2fef69b6c8613691aa
SHA256

6efc6cc54226ade4c2ce4f841cf8f5cfc139583a50175b6e1e78009feb41d36f
SHA512

47b2ce627b1d6592a3b879d520e049bf09749488969e8ac86edb4a20ade793ba1bd2f721bc9553e9066dfcc9e03dec13e98c002e0dab240bb0da9c6bf7296058
SSDEEP

3072:Y6kFDtOqrb/g5ZoAlDeZUGsIruEwzLYTq/eVi7xkV10gzDyVI3gJ8+Q:6wRoOfG1I6Om0aDyWw

Score

N/A

Malware Config

Signatures

Files

6efc6cc54226ade4c2ce4f841cf8f5cfc139583a50175b6e1e78009feb41d36f
.exe windows x86

4080eb899300e66fe076915ce8d937e5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathGetArgsA

user32

GetScrollPos
GetForegroundWindow
LoadIconA
EqualRect
GetDC

kernel32

PulseEvent
SetPriorityClass
GlobalCompact
IsBadReadPtr
lstrcpyA
LCMapStringW
GlobalReAlloc
FindResourceExW
SetSystemTimeAdjustment
GetTempFileNameW
FindResourceExA
IsValidLocale
LoadLibraryW
IsValidLanguageGroup
GetComputerNameW
GetACP
GetTempPathW
CreateFileW
GetSystemDefaultUILanguage
GetFileAttributesW
CompareStringA
MultiByteToWideChar
GetCPInfo
MoveFileExW
GetSystemInfo
CreateMailslotW
GlobalGetAtomNameW
CopyFileA
HeapFree
ReadFile
lstrlenA
DisconnectNamedPipe
FindCloseChangeNotification
GlobalAddAtomW
GetUserDefaultLCID
WaitForMultipleObjectsEx
lstrcmpiW
SetCommState
MapViewOfFile
SearchPathA
ResetEvent
DuplicateHandle
GetComputerNameA
GetFileInformationByHandle
GetCurrentThreadId
RtlUnwind
SetCommTimeouts
WaitForSingleObjectEx
CreateFileA
TerminateThread
GetFileType
SetFileTime
ClearCommBreak
VerSetConditionMask
SetupComm
GetVersion
GetStringTypeExW
GetUserDefaultLangID

Exports

Exports

?SevenString@@YGEUtext@@@Z
?ThirdString@@YGEUtext@@@Z

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.long
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zlong
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dlong
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.along
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vlong
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rlong
Size: 1024B - Virtual size: 692B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4080eb899300e66fe076915ce8d937e5

Headers

File Characteristics

Imports

shlwapi

user32

kernel32

Exports

Exports

Sections

.text Size: 29KB - Virtual size: 29KB

.long Size: 15KB - Virtual size: 15KB

.zlong Size: - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 1KB

.dlong Size: 512B - Virtual size: 296B

.along Size: 512B - Virtual size: 64B

.vlong Size: 512B - Virtual size: 64B

.rlong Size: 1024B - Virtual size: 692B

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 146KB - Virtual size: 146KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 29KB

.long
Size: 15KB - Virtual size: 15KB

.zlong
Size: - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 1KB

.dlong
Size: 512B - Virtual size: 296B

.along
Size: 512B - Virtual size: 64B

.vlong
Size: 512B - Virtual size: 64B

.rlong
Size: 1024B - Virtual size: 692B

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 146KB - Virtual size: 146KB

.reloc
Size: 1KB - Virtual size: 1KB