14cdeb7fd7331a6d9591bce041d836570a336f30bbb1bb62da5edd439d64a35c

Sharing

Copy URL Twitter E-mail

General

Target

14cdeb7fd7331a6d9591bce041d836570a336f30bbb1bb62da5edd439d64a35c
Size

118KB
MD5

0d8568f5b019fe9b99de702d6a7a6fe0
SHA1

f5523e9ef00988eb09b6535032c7d674a04fca43
SHA256

14cdeb7fd7331a6d9591bce041d836570a336f30bbb1bb62da5edd439d64a35c
SHA512

413b15b9a2b437a37972b271c84bd669014f5575340f2e5adfca49273aa10c973345b98e90c0d2e04a13389b01c099b24f0b16646b573dd9b66b76265ced7f1b
SSDEEP

3072:4OqQfpscoLSH0KIgpLEJndQmj3dTk+CQZ:41Qf3dEZd1rQQZ

Score

N/A

Malware Config

Signatures

Files

14cdeb7fd7331a6d9591bce041d836570a336f30bbb1bb62da5edd439d64a35c
.exe windows x86

e83d0edfd06ff9fc6782f4b47e284a18

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wtsapi32

WTSUnRegisterSessionNotification

kernel32

LocalFree
WideCharToMultiByte
SetFilePointer
GetLastError
WriteFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetSystemPowerStatus
UnhandledExceptionFilter
TerminateProcess
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
OutputDebugStringA
GetVersionExA
GetModuleHandleA
GetProcAddress
GetCurrentProcess
GetStringTypeA
CloseHandle
GetModuleFileNameA
MultiByteToWideChar
FlushFileBuffers
SetStdHandle
LoadLibraryA
HeapFree
ExitProcess
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
GetStringTypeW

user32

EnumDisplaySettingsA
GetSystemMetrics
UnregisterDeviceNotification
RegisterDeviceNotificationA
BeginPaint
EndPaint
DestroyWindow
PostQuitMessage
DefWindowProcA
KillTimer
FindWindowA
DispatchMessageA
ShowWindow
UpdateWindow
SetTimer
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
CreateWindowExA

advapi32

GetNamedSecurityInfoA
SetNamedSecurityInfoA
RegEnumKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

CoCreateInstance
CoUninitialize
CoInitialize

oleaut32

SysFreeString

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e83d0edfd06ff9fc6782f4b47e284a18

Headers

File Characteristics

Imports

wtsapi32

kernel32

user32

advapi32

ole32

oleaut32

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 76KB - Virtual size: 76KB

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 76KB - Virtual size: 76KB