48052cfefd5bbb8cf358917f095b80c91be95ffe7ed5b6949a80e49b7a2dfb91

Sharing

Copy URL

Twitter E-mail

General

Target

48052cfefd5bbb8cf358917f095b80c91be95ffe7ed5b6949a80e49b7a2dfb91
Size

348KB
MD5

822435c103d0124846527bab0c8338c0
SHA1

40a0af433913c317094d8aefb39ca59b36f8edd1
SHA256

48052cfefd5bbb8cf358917f095b80c91be95ffe7ed5b6949a80e49b7a2dfb91
SHA512

6143ee1e6b717f9f31e2f8dccddb28362a6463f7ae8cc507cb7895966d26c78ca38257d685e5c19458042694944a92bcb18d5ea3431d45cae38fe3a06a5bf3a6
SSDEEP

6144:KJ5I5RwMGznVDZECBKRZOc3Rzjgk2gnsGQAHMDjHV:s5aRpGzVDZErzOcBONpDjHV

Score

N/A

Malware Config

Signatures

Files

48052cfefd5bbb8cf358917f095b80c91be95ffe7ed5b6949a80e49b7a2dfb91
.exe windows x86

b4210c899f1c08f028fd3cd21deca599

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateEventA
VirtualAlloc
FlushFileBuffers
SuspendThread
SetFilePointer
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetStdHandle
InterlockedExchange
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
HeapFree
VirtualFree
RtlUnwind
WriteFile
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
DebugBreak
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
MultiByteToWideChar
CloseHandle

user32

LoadBitmapW
GetUserObjectInformationA
CreateWindowExA
UpdateWindow

ole32

CoUninitialize
CoCreateInstance

avifil32

AVIFileCreateStreamW

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ttext
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ini
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 180KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eata
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4210c899f1c08f028fd3cd21deca599

Headers

File Characteristics

Imports

kernel32

user32

ole32

avifil32

Sections

.text Size: 36KB - Virtual size: 34KB

.ttext Size: 4KB - Virtual size: 12B

.ini Size: 4KB - Virtual size: 76B

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 180KB - Virtual size: 184KB

.eata Size: 104KB - Virtual size: 103KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 36KB - Virtual size: 34KB

.ttext
Size: 4KB - Virtual size: 12B

.ini
Size: 4KB - Virtual size: 76B

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 180KB - Virtual size: 184KB

.eata
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 4KB - Virtual size: 1KB