2520417697e464e86f8219888eabab3efdb9c2fddc27c81a7af438f0867958a8

Sharing

Copy URL Twitter E-mail

General

Target

2520417697e464e86f8219888eabab3efdb9c2fddc27c81a7af438f0867958a8
Size

15.7MB
MD5

4a832262028fef216597dd7d892037b7
SHA1

7e8944149212507fc9e0a2794b37b480d8e32e90
SHA256

2520417697e464e86f8219888eabab3efdb9c2fddc27c81a7af438f0867958a8
SHA512

4c2b400240e8a1c2953237874a77734cd44eb0c64f1fb42a16e02742706b2023f65886c64f8a9b2cac26e3fc605a021d61caf9412c82806ad7074198c39a9d42
SSDEEP

393216:9z1cV+Me23MzOJQo9HarPWoygXzBU3KPtDMN3G8+8qm2PP:TWB3MzOJ7oygXzBXPtAlGBLn

Score

N/A

Malware Config

Signatures

Files

2520417697e464e86f8219888eabab3efdb9c2fddc27c81a7af438f0867958a8
.exe windows x86

4d80d0fcb8fe2b8740719cb6d6290a19

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
MultiByteToWideChar
WideCharToMultiByte
GetLastError
LoadLibraryA
GetModuleFileNameW
GetModuleFileNameA
LocalFree
FormatMessageW
FormatMessageA
CloseHandle
SetFileTime
CreateFileW
SetLastError
SetFileAttributesW
SetFileAttributesA
RemoveDirectoryW
RemoveDirectoryA
CreateDirectoryW
CreateDirectoryA
DeleteFileW
DeleteFileA
GetFullPathNameW
GetFullPathNameA
SetCurrentDirectoryW
SetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentDirectoryA
GetTempPathW
GetTempPathA
GetCurrentProcessId
GetTickCount
GetCurrentThreadId
FindClose
FindFirstFileW
FindFirstFileA
FindNextFileW
FindNextFileA
CreateFileA
GetFileSize
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
GetStdHandle
LeaveCriticalSection
EnterCriticalSection
WaitForMultipleObjects
Sleep
VirtualAlloc
VirtualFree
GetVersionExA
WaitForSingleObject
CreateEventA
SetEvent
ResetEvent
InitializeCriticalSection
CreateProcessA
GetCommandLineW
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
InterlockedIncrement
InterlockedDecrement
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
GetCurrentProcess
TerminateProcess
IsBadWritePtr
HeapCreate
HeapDestroy
GetEnvironmentVariableA
SetUnhandledExceptionFilter
TlsAlloc
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
ExitThread
RtlUnwind
RaiseException
HeapAlloc
HeapFree
HeapReAlloc
CreateThread
TlsSetValue
TlsGetValue

user32

DestroyWindow
EndDialog
PostMessageA
KillTimer
GetDlgItem
LoadIconA
SendMessageA
SetTimer
MessageBoxW
SetWindowTextW
SetWindowTextA
LoadStringW
LoadStringA
DialogBoxParamW
DialogBoxParamA
SetWindowLongA
GetWindowLongA
ShowWindow
CharUpperW
CharUpperA

shell32

ShellExecuteExA

oleaut32

VariantClear
SysAllocString

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d80d0fcb8fe2b8740719cb6d6290a19

Headers

File Characteristics

Imports

kernel32

user32

shell32

oleaut32

Sections

.text Size: 103KB - Virtual size: 102KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 12KB - Virtual size: 22KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 103KB - Virtual size: 102KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 12KB - Virtual size: 22KB

.rsrc
Size: 4KB - Virtual size: 3KB