54f89c3d8e6019193b69aad1217deb578bd0e000bf7b30a9e04dc740445ad59e

Sharing

Copy URL Twitter E-mail

General

Target

54f89c3d8e6019193b69aad1217deb578bd0e000bf7b30a9e04dc740445ad59e
Size

148KB
MD5

82958cb99c7ada6c909c68dae10027f0
SHA1

3ff9ed5edbac72dfe502bd0319b784e095a9183f
SHA256

54f89c3d8e6019193b69aad1217deb578bd0e000bf7b30a9e04dc740445ad59e
SHA512

8fdff5bd01550ff7012269cd849a49916c46f95c19a9bba11f5c2561f91d54c2a83edcbf024351e0ba52f699ed4c46e61cac5e596fc246ce511e1351726c5bda
SSDEEP

3072:2kGVWe/mdSkuK/1bQ8GGPLiI/6x1BJ2vez:2TWqgSL+bMQeL

Score

N/A

Malware Config

Signatures

Files

54f89c3d8e6019193b69aad1217deb578bd0e000bf7b30a9e04dc740445ad59e
.exe windows x86

cd39e55c70a5261a2f5fd7214b6631dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msi

ord149

gdi32

CreateDCA
SetRectRgn
DeleteEnhMetaFile
RestoreDC
GetCurrentPositionEx
GetTextMetricsA
CreatePalette
CreateFontW
CreateFontIndirectW
SetROP2
LPtoDP
GetDeviceCaps
GetDIBits
StretchDIBits
GetMapMode
GetBitmapBits
GetWindowOrgEx
SetStretchBltMode
ExtCreatePen
SetTextAlign
CreateDIBSection
SelectPalette
SetViewportExtEx

shlwapi

PathGetCharTypeA

kernel32

DeleteCriticalSection
CompareStringW
CompareStringA
GetTimeZoneInformation
GetCommandLineA
GetEnvironmentStrings
GetVersionExA
GetModuleHandleW
lstrcmpA
VirtualAlloc
GetCurrentThread
FormatMessageW
TerminateProcess
lstrlenW
WideCharToMultiByte
ReadFile
GetTickCount
GetModuleFileNameW
LoadLibraryA
SetHandleCount
CreateFileW
InterlockedIncrement
HeapFree
GetStringTypeW
GetLastError
HeapAlloc
SetEvent
GetCurrentProcess
SetFilePointer
InterlockedExchange
GetModuleFileNameA
InterlockedCompareExchange
GetFileType
GetCommandLineW
FreeLibrary
TlsGetValue
GetEnvironmentStringsW
CreateFileA
QueryPerformanceCounter
IsDebuggerPresent
SetEnvironmentVariableA
WaitForSingleObjectEx
FreeEnvironmentStringsW
GetConsoleMode
Sleep
GetOEMCP
FreeLibraryAndExitThread
LCMapStringW
TlsSetValue
EnterCriticalSection
GetACP
WaitForSingleObject
LeaveCriticalSection
LocalFree
TryEnterCriticalSection
WriteFile
InterlockedDecrement
GetModuleHandleA
GetFileSize
RaiseException
CloseHandle
MultiByteToWideChar
FlushFileBuffers
HeapDestroy
CreateThread
ExitProcess
GetStdHandle
GetProcessHeap
CreateEventW
GetStartupInfoW
GetProcAddress
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetStartupInfoA
TlsAlloc
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
VirtualFree
GetCurrentProcessId
GetSystemTimeAsFileTime
FatalAppExitA
SetUnhandledExceptionFilter
SetConsoleCtrlHandler
InitializeCriticalSection
GetCPInfo
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
GetLocaleInfoW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
LCMapStringA

Sections

.text
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd39e55c70a5261a2f5fd7214b6631dc

Headers

File Characteristics

Imports

msi

gdi32

shlwapi

kernel32

Sections

.text Size: 112KB - Virtual size: 110KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 10KB

.tls Size: 4KB - Virtual size: 17B

.sxdata Size: 4KB - Virtual size: 116B

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 112KB - Virtual size: 110KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 10KB

.tls
Size: 4KB - Virtual size: 17B

.sxdata
Size: 4KB - Virtual size: 116B

.rsrc
Size: 4KB - Virtual size: 3KB