cd19f758657aa523c87b1a02f6f57b106ebb78c53e944606fa893003b768433f

Sharing

Copy URL Twitter E-mail

General

Target

cd19f758657aa523c87b1a02f6f57b106ebb78c53e944606fa893003b768433f
Size

110KB
MD5

0d65e0cfad708a197ad907c295b1bb5d
SHA1

0fe2793f66ad55bddce9886797cff7e1ebd4ab27
SHA256

cd19f758657aa523c87b1a02f6f57b106ebb78c53e944606fa893003b768433f
SHA512

caa2df6cc5bce129bb1ee02c7990c7c3d1e903876566a86cbbd69f5ac03edf0e13741b493a1c96aeed7f02da44fc957f5785297009f4ea737b05a1e609f695e9
SSDEEP

3072:4hiPLaCWnzRm/vjYZihCCrQKfaAQDWkGcc1:A6LaVn9m3jYZVCrAHW5cc1

Score

N/A

Malware Config

Signatures

Files

cd19f758657aa523c87b1a02f6f57b106ebb78c53e944606fa893003b768433f
.exe windows x86

3ac269b1eb16b53d8dd498d215221c99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
sprintf
fabs
ceil
malloc
floor
free
fclose
strcmp
memmove
memcpy
strlen

kernel32

GetModuleHandleA
HeapCreate
CloseHandle
HeapDestroy
ExitProcess
LoadLibraryA
GetVersionExA
HeapAlloc
HeapFree
InitializeCriticalSection
GetProcAddress
FreeLibrary
TlsAlloc
GetModuleFileNameA
TlsGetValue
TlsSetValue
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InterlockedCompareExchange
Sleep
InterlockedExchange
WaitForMultipleObjects
GetCurrentThreadId
GetCurrentProcess
GetCurrentThread
DuplicateHandle
CreateSemaphoreA
CreateThread
ReleaseSemaphore

user32

CallWindowProcA
GetWindowLongA
CreateWindowExA
SendMessageA
DestroyWindow
GetWindowLongW
CallWindowProcW
RemovePropW
SetWindowLongW
DefWindowProcW
SetPropW
SendMessageW
GetParent
GetPropW
RemovePropA
SetWindowLongA
DefWindowProcA
SetPropA
GetPropA
GetWindow
SetActiveWindow
UnregisterClassA
DestroyAcceleratorTable
LoadIconA
LoadCursorA
SetCursorPos
LoadImageA
SetCursor
MapWindowPoints
MoveWindow
SystemParametersInfoA
GetWindowRect
GetSystemMetrics
GetKeyState
SetCapture
PostMessageA
GetCursorPos
ReleaseCapture
FillRect
DestroyIcon

gdi32

GetStockObject
DeleteObject
GetObjectA
CreateCompatibleDC
GetDIBits
DeleteDC
GetObjectType
CreateDIBSection
SelectObject
BitBlt
CreateBitmap
SetPixel

comctl32

InitCommonControlsEx

ole32

RevokeDragDrop

wsock32

closesocket
WSACleanup
WSAStartup

Sections

.code
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 369B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zaer
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ac269b1eb16b53d8dd498d215221c99

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comctl32

ole32

wsock32

Sections

.code Size: 8KB - Virtual size: 8KB

.text Size: 16KB - Virtual size: 12KB

.rdata Size: 512B - Virtual size: 369B

.zaer Size: 3KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 2KB

.code
Size: 8KB - Virtual size: 8KB

.text
Size: 16KB - Virtual size: 12KB

.rdata
Size: 512B - Virtual size: 369B

.zaer
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 2KB