9ae1d8a556ed6c2e102b4299275925ebdc23e91a3a42e5832c2c7f640fa9a31f

Sharing

Copy URL Twitter E-mail

General

Target

9ae1d8a556ed6c2e102b4299275925ebdc23e91a3a42e5832c2c7f640fa9a31f
Size

178KB
MD5

8336aa6e6a65d662eeacd9a7e37d6b30
SHA1

75ec0fb22416d0f3817a17d7d3038a8cb095a952
SHA256

9ae1d8a556ed6c2e102b4299275925ebdc23e91a3a42e5832c2c7f640fa9a31f
SHA512

10a8267e7b29a0f9dd364cbb5ad037dee018f0266a2175e8b3aec86b38d00cc1628b341f7e187c79ccc09dc8941f79fe19417768c012dac0542ae50f42675838
SSDEEP

3072:Zt6bMQ1YZ4iyhku21yPL+14+T26lFATAOdm63pGgP1jrlvYj5kKVwer8:ZtukQg1n2+T/liTzI63/hhvYj5TPA

Score

N/A

Malware Config

Signatures

Files

9ae1d8a556ed6c2e102b4299275925ebdc23e91a3a42e5832c2c7f640fa9a31f
.exe windows x86

34deda7d394ae1818f912684d100e1d7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
HeapSize
RtlUnwind
Sleep
HeapFree
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
UnhandledExceptionFilter
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
InterlockedDecrement
GetStringTypeW
HeapReAlloc
CloseHandle
LoadLibraryA
lstrcmpiA
GetProcAddress
lstrlenW
ReadFile
CreateFileW
HeapAlloc
GetFileSize
LoadLibraryW
ExitProcess
GetLastError
GetCurrentThreadId
SetLastError
IsProcessorFeaturePresent
GetCommandLineA
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetModuleHandleW
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement

user32

DestroyWindow
GetMessageA
ScreenToClient
GetWindowRect
PostQuitMessage
SendDlgItemMessageA
GetSubMenu
GetParent
LoadIconA
GetClientRect
SetFocus
SendMessageA
BeginPaint
PtInRect
CheckMenuItem
IsDialogMessageA
TranslateMessage
MessageBoxA
UnregisterClassA
GetWindowLongA
CreateWindowExA
GetDlgItem
GetDesktopWindow
DispatchMessageA
GetMenuInfo
MessageBoxW
CloseWindow
LoadCursorA
RegisterClassA

gdi32

DeleteDC

comdlg32

ChooseFontA
PrintDlgA

advapi32

RegEnumValueA
RegQueryInfoKeyA
RegCloseKey

shell32

Shell_NotifyIconW

userenv

GetProfileType

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 145KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34deda7d394ae1818f912684d100e1d7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

userenv

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 145KB - Virtual size: 148KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 145KB - Virtual size: 148KB

.rsrc
Size: 1KB - Virtual size: 1KB