1b5dacd29523e22c17b3c2c75d9c0c972709b4748c66943c422afa17307c1981

General

Target

1b5dacd29523e22c17b3c2c75d9c0c972709b4748c66943c422afa17307c1981
Size

76KB
MD5

0c48a8deff5e10db12e4d03bc8dcf5a0
SHA1

f39d889be085c4baabe6ba7e06e503574acdd797
SHA256

1b5dacd29523e22c17b3c2c75d9c0c972709b4748c66943c422afa17307c1981
SHA512

3ac1c7d99a309f080a246e0985d85db9d3ca4cae4cb4afaa2b34304de40089514977627d515156c4e005b0ebc0d4a0d4b1d30e7015b604450348e9c51bc35316
SSDEEP

1536:pJFkvzMYeDrqfDNFaAD8GXN+I7fJ+aCl1fencHi:pJsMsDNFdzoI7h+aS1GnV

Score

N/A

Malware Config

Signatures

Files

1b5dacd29523e22c17b3c2c75d9c0c972709b4748c66943c422afa17307c1981
.exe windows x86

8dac81802193768b8e6968068e9ff712

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
HeapSize
LCMapStringW
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetSystemTimeAsFileTime
LCMapStringA
Sleep
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
SetFilePointer
HeapAlloc
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
VirtualAlloc
HeapReAlloc
RtlUnwind
InterlockedExchange
VirtualQuery
SetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
CloseHandle

user32

MessageBoxA
GetWindowTextA
GetWindowThreadProcessId
GetTopWindow
GetWindow
FindWindowA
SendMessageA

ipxinject

SetHook

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8dac81802193768b8e6968068e9ff712

Headers

File Characteristics

Imports

kernel32

user32

ipxinject

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 40KB - Virtual size: 39KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 40KB - Virtual size: 39KB