35f3af08b67a0ed03382523cbba27b00c98ac6f0a90a52bee79a79a05fe14ba9

Sharing

Copy URL Twitter E-mail

General

Target

35f3af08b67a0ed03382523cbba27b00c98ac6f0a90a52bee79a79a05fe14ba9
Size

509KB
MD5

0d9be174ffd84ada12ed11e3257132d0
SHA1

58e6c8b2a18a89eda7ce72f92059e78a4e9361b3
SHA256

35f3af08b67a0ed03382523cbba27b00c98ac6f0a90a52bee79a79a05fe14ba9
SHA512

ba6178a7eeb615789ad4866e423e4cb7a1c916b1dc36b840bde43eabe872da8f3cfa9de7309c0529fc0e9befd65804f0575543a403501dc412a28ce86afa2b97
SSDEEP

12288:uzaQiodPa0ykeHRaqL153JMHEkB3qCHkTieW9hwlEl:sPa0JG9L1zOlaYkOL9Nl

Score

N/A

Malware Config

Signatures

Files

35f3af08b67a0ed03382523cbba27b00c98ac6f0a90a52bee79a79a05fe14ba9
.exe windows x86

552e00413fa31a3d7a9f8b448cabde49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassA
GetUserObjectSecurity
RegisterClassExA

kernel32

GetModuleFileNameA
GetModuleHandleW
GetTimeFormatW
EnumDateFormatsA
RtlMoveMemory
GetNumberFormatW
Sleep
CloseHandle
SetUnhandledExceptionFilter
WideCharToMultiByte
LoadLibraryA
InterlockedDecrement
GetTempPathW
VirtualFree
ReadFile
FlushViewOfFile
RtlUnwind
OpenMutexA
WaitNamedPipeA
GetFileType
QueryPerformanceCounter
ReadConsoleInputW
GetSystemTimeAsFileTime
GetStringTypeW
GetTickCount
GetCurrentProcess
GetTimeFormatA
SetConsoleCtrlHandler
SetStdHandle
GetACP
CreateSemaphoreA
TlsAlloc
GetLastError
WriteFile
LCMapStringW
lstrcpyA
GetCurrentProcessId
HeapReAlloc
GetFileAttributesExA
GetFileAttributesExW
SetFilePointer
IsValidCodePage
GetCommandLineA
VirtualQuery
HeapAlloc
GetStdHandle
InterlockedExchange
CreateNamedPipeA
MultiByteToWideChar
DeleteCriticalSection
GetLocaleInfoW
EnumSystemLocalesA
GetConsoleMode
GetTimeZoneInformation
GetStringTypeA
GetLocaleInfoA
TlsGetValue
TerminateProcess
IsValidLocale
UnhandledExceptionFilter
CompareStringA
SetConsoleMode
FreeLibrary
GetModuleFileNameW
GetDateFormatA
GetUserDefaultLCID
LCMapStringA
GetCPInfo
HeapFree
VirtualAlloc
IsDebuggerPresent
GetCurrentThreadId
SetLastError
GetStartupInfoA
GetStartupInfoW
SetHandleCount
HeapSize
HeapCreate
GetEnvironmentStringsW
FlushFileBuffers
GetProcessAffinityMask
WriteConsoleA
GetSystemTimeAdjustment
CreateEventW
SetThreadAffinityMask
TlsFree
InitializeCriticalSectionAndSpinCount
GetOEMCP
GetCommandLineW
FreeEnvironmentStringsW
GetConsoleOutputCP
CreateFileA
GetProcAddress
GetCurrentThread
GetModuleHandleA
CreateMutexA
ExitProcess
TlsSetValue
WriteConsoleW
CompareStringW
InterlockedIncrement
EnterCriticalSection
SetEnvironmentVariableA
GetConsoleCP
LeaveCriticalSection
HeapDestroy

comctl32

InitCommonControlsEx

Sections

.text
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

552e00413fa31a3d7a9f8b448cabde49

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 174KB - Virtual size: 174KB

.rdata Size: 9KB - Virtual size: 33KB

.data Size: 316KB - Virtual size: 316KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 174KB - Virtual size: 174KB

.rdata
Size: 9KB - Virtual size: 33KB

.data
Size: 316KB - Virtual size: 316KB

.rsrc
Size: 7KB - Virtual size: 7KB