e61be701887c59de1607f6b4dc0ff4d708484d6faba202a93bbade32471b7c2b

General

Target

e61be701887c59de1607f6b4dc0ff4d708484d6faba202a93bbade32471b7c2b
Size

1.2MB
MD5

0d1e5cf97e8dfc06ee8d4d4f5e263b12
SHA1

0269f8c3f4d2942f3d22be8dd09392bba4c01488
SHA256

e61be701887c59de1607f6b4dc0ff4d708484d6faba202a93bbade32471b7c2b
SHA512

164db77afa428c3086848ae9e99e528f5ff93428487dcf97324d0035d04091e0c2caba900f5722cdbc46ee78d71afe3b31ec34065c831238a63a061165000568
SSDEEP

24576:tvOrqJbMjrpzEcASit7mDdfRIFSaYR5lnkJPRQ6UahVg+7Nupxnoa2w3WhRGJoOS:ja5zEcASit7mDdfRIFSaYR5ln0PRQ6UI

Score

N/A

Malware Config

Signatures

Files

e61be701887c59de1607f6b4dc0ff4d708484d6faba202a93bbade32471b7c2b
.exe windows x86

51731fa3489b9ccfea3dec37f6755e6a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
Sleep
CreateThread
TerminateThread
CreateFileA
GetModuleHandleA
UnhandledExceptionFilter
GetCurrentProcess
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
DeviceIoControl
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount

user32

ShowWindow
MessageBoxA
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
EndDialog
PostQuitMessage
LoadBitmapA
InvalidateRect
BeginPaint
EndPaint
DefWindowProcA
DialogBoxParamA
DestroyWindow
MoveWindow
RedrawWindow
CreateWindowExA
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA

gdi32

BitBlt
SelectObject
CreateCompatibleDC
CreateSolidBrush
DeleteDC

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 912KB - Virtual size: 911KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

51731fa3489b9ccfea3dec37f6755e6a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 11KB

.rsrc Size: 912KB - Virtual size: 911KB

.text Size: 232KB - Virtual size: 232KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 912KB - Virtual size: 911KB

.text
Size: 232KB - Virtual size: 232KB