b2a361f4d77665753db455ddf36ebb27e6763dbb1ad2b58b8253e656695bed1a

Sharing

Copy URL Twitter E-mail

General

Target

b2a361f4d77665753db455ddf36ebb27e6763dbb1ad2b58b8253e656695bed1a
Size

512KB
MD5

0562464440eb3abb0b037a638d2c3f40
SHA1

19c55c363d7bb38acb7f536b7cfaa2f23f41b169
SHA256

b2a361f4d77665753db455ddf36ebb27e6763dbb1ad2b58b8253e656695bed1a
SHA512

d79aa388f642f6e9a273f86b04a6a806531e66ae2750ee0b4a7782d70b582f425e531c09301a3cbc8f1a37f8199d4223c62a689eb0a2049549d2d0ddfcac82f6
SSDEEP

12288:mH9/6YUEMBsOm9gP5b2ftJs6g/fq0q3g7iCLzEk6w7FmB:mHZUEeFM8BRq3QiSww5m

Score

N/A

Malware Config

Signatures

Files

b2a361f4d77665753db455ddf36ebb27e6763dbb1ad2b58b8253e656695bed1a
.exe windows x86

e82da91ac9a8faab59b87b336a686843

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsFree
MapViewOfFile
RaiseException
GetCommandLineA
HeapSize
GetCPInfo
LockResource
GetCurrentProcessId
GetEnvironmentStrings
GetThreadLocale
GetConsoleCP
lstrlenA
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileW
CreateEventW
GlobalLock
CreateFileMappingA
ResetEvent
FindFirstFileA
GetProcessHeap
GetProcAddress
SetEvent
DeleteFileA
GetFileSize
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
InterlockedIncrement
GetCurrentThreadId
GlobalAlloc
GetVersion
WriteConsoleA
TerminateProcess
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
TlsGetValue
UnhandledExceptionFilter
HeapAlloc
SetLastError
OutputDebugStringA
FormatMessageA
SetFilePointer
LoadResource
InitializeCriticalSection
LocalFree
GetExitCodeProcess
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
WideCharToMultiByte
GetTempPathA
SetStdHandle
MultiByteToWideChar
FreeEnvironmentStringsW
SetErrorMode
CreateFileA
GetLocaleInfoA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapFree
HeapDestroy
WaitForSingleObject
GetConsoleOutputCP
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
EnterCriticalSection
RtlUnwind
GetEnvironmentStringsW
GetFileType
TlsSetValue
GetOEMCP
LCMapStringA
GetStringTypeA
ReadFile
CloseHandle
lstrcpynA
GetACP
GetModuleHandleW
HeapCreate
VirtualFree
Sleep
FindResourceA
InterlockedDecrement
VirtualAlloc

user32

SetWindowLongA
SetCapture
GetSystemMetrics
FillRect
CreateWindowExA
GetWindowLongA
EnableMenuItem
LoadStringA
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
GetDC
IsWindow
LoadCursorA
LoadIconA
SetForegroundWindow
EndDialog
MessageBoxA
GetSysColor
GetKeyState
SystemParametersInfoA
SendMessageA
SetCursor
ClientToScreen

gdi32

DeleteDC
SetBkColor
SetTextColor

advapi32

RegQueryValueExA
RegCreateKeyExA
OpenProcessToken
RegCloseKey
RegSetValueExW
RegOpenKeyExA

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 480KB - Virtual size: 477KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e82da91ac9a8faab59b87b336a686843

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 24KB - Virtual size: 20KB

.data Size: 480KB - Virtual size: 477KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 24KB - Virtual size: 20KB

.data
Size: 480KB - Virtual size: 477KB

.rsrc
Size: 4KB - Virtual size: 2KB