cd9e709162f996aef74e8f8bbb4856ef4f135fa0dcadc8018a4e477c51fe077e

Sharing

Copy URL

Twitter E-mail

General

Target

cd9e709162f996aef74e8f8bbb4856ef4f135fa0dcadc8018a4e477c51fe077e
Size

133KB
MD5

92fd1c410b39463937c39edac69c7c21
SHA1

d488a8089323059b4f07e7574f0965a157e7c9eb
SHA256

cd9e709162f996aef74e8f8bbb4856ef4f135fa0dcadc8018a4e477c51fe077e
SHA512

e89c76031625ef1a216a95a5132ea176f09a4935196ea0ab5c26dea9a70c8aa4325e2a2242815cc9d2bf994740e9cd6b4fa5e9be49fcd0658dfd30fa12a295f5
SSDEEP

3072:u6dFlE9csYpqFNADY4WovGlUo5PQwh1gKAdqEB:unKTqbCvGlHngKA

Score

N/A

Malware Config

Signatures

Files

cd9e709162f996aef74e8f8bbb4856ef4f135fa0dcadc8018a4e477c51fe077e
.exe windows x86

99ed771e27933790fb4999427774b5f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseDC
RemovePropA
ScreenToClient
ScrollWindow
IsDlgButtonChecked
IsMenu
GetMenu

comctl32

ImageList_Draw
ImageList_GetBkColor
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Create
ImageList_Destroy
ImageList_Add
ImageList_Read
ImageList_Remove

msvcrt

wcsncmp
swprintf
exit
clock
rand
wcstol
srand
malloc

kernel32

VirtualFree
GetCurrentProcessId
GetCommandLineA
LocalAlloc
RaiseException
LocalFree
CreateFileA
LoadLibraryExA
ResetEvent
GetCurrentProcess
GetCommandLineW
VirtualAllocEx
SetEvent
InitializeCriticalSection
lstrcpynA
SetThreadLocale
EnterCriticalSection
FindFirstFileA
MulDiv
WriteFile
GetDateFormatA
lstrcpyA
FindResourceA
lstrcmpiA
GetFileAttributesA
DeleteFileA
Sleep
GetModuleHandleA
LoadLibraryA
GetUserDefaultLCID
HeapAlloc
GlobalFindAtomA
GetThreadLocale
SizeofResource
GetModuleHandleW
LockResource
CloseHandle
ExitProcess
GetStringTypeW
SetFilePointer
SetLastError
GetCurrentThreadId
FindClose
lstrlenA
EnumCalendarInfoA
VirtualAlloc
CreateThread
ExitThread
GetFileSize
WideCharToMultiByte
GetACP
GetStdHandle

Exports

Exports

m8kvj4qlpmco@24

Sections

CODE
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 9KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jkdata
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99ed771e27933790fb4999427774b5f7

Headers

File Characteristics

Imports

user32

comctl32

msvcrt

kernel32

Exports

Exports

Sections

CODE Size: 11KB - Virtual size: 11KB

DATA Size: 9KB - Virtual size: 121KB

.jkdata Size: 107KB - Virtual size: 106KB

.edata Size: 2KB - Virtual size: 1KB

.idata Size: 512B - Virtual size: 80B

.rsrc Size: 1KB - Virtual size: 1KB

CODE
Size: 11KB - Virtual size: 11KB

DATA
Size: 9KB - Virtual size: 121KB

.jkdata
Size: 107KB - Virtual size: 106KB

.edata
Size: 2KB - Virtual size: 1KB

.idata
Size: 512B - Virtual size: 80B

.rsrc
Size: 1KB - Virtual size: 1KB