5e14a3fa2a46c5a9099eac48287815339b7cf3ca6f3f1885eb6b21aab93a49cf

Sharing

Copy URL Twitter E-mail

General

Target

5e14a3fa2a46c5a9099eac48287815339b7cf3ca6f3f1885eb6b21aab93a49cf
Size

875KB
MD5

0771fb02b483112dfe0bc682963e2d76
SHA1

e17c898633cda7d4e9664236c5a9c56507d4d769
SHA256

5e14a3fa2a46c5a9099eac48287815339b7cf3ca6f3f1885eb6b21aab93a49cf
SHA512

c4faaf6a86d7af41a291a850b1541329009982a4257e374594a102ab498937b8963e84e7c3ca4652d3979f7fd22cdcab030ce3502fcd525964271e916fba6132
SSDEEP

24576:rMIfozk5kLn2j6qNGyljZJWocJZryBvOx/7W:rMIfoIeLn21NGyljZJ8mOx/

Score

N/A

Malware Config

Signatures

Files

5e14a3fa2a46c5a9099eac48287815339b7cf3ca6f3f1885eb6b21aab93a49cf
.exe windows x86

13dd33627368ddf2bc99fe682cf36b73

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__getmainargs
_iob
__p__commode
__set_app_type
exit
_wcsnicmp
??_V@YAXPAX@Z
fclose
_initterm

user32

ClientToScreen
SetParent
GetMenuItemCount
MsgWaitForMultipleObjects
MessageBeep
IsWindowEnabled
GetWindowTextA
PostQuitMessage
GetCapture
GetAsyncKeyState
CallNextHookEx
GetNextDlgTabItem
GetWindowRect
SetPropA
ScreenToClient
DrawIconEx
ReleaseCapture
SetScrollPos
GetMessageW
GetClassNameA
SetWindowsHookExW
GetMessagePos

advapi32

AdjustTokenPrivileges
RegOpenKeyW
FreeSid
CloseServiceHandle
RegEnumValueW

kernel32

InterlockedExchange
GetStartupInfoA
IsValidCodePage
MapViewOfFile
GetConsoleMode
GetThreadLocale
LocalAlloc
FindResourceW
LoadLibraryW
SetHandleCount
SystemTimeToFileTime
lstrcmpiW
GetModuleHandleW
GetCurrentDirectoryW
GetVolumeInformationW
DeleteFileA
GetSystemDefaultLCID
HeapReAlloc
InitializeCriticalSectionAndSpinCount
CreateThread
GetFileAttributesW
GetProcessHeap
GlobalFindAtomA
CreateDirectoryW
GlobalHandle
IsBadReadPtr
FlushFileBuffers
HeapFree
WaitForSingleObject
TlsSetValue
LocalFree
TlsAlloc
FileTimeToSystemTime

gdi32

GetTextExtentPoint32A
CreateRectRgn
SetTextAlign
CreateDIBitmap
ExcludeClipRect
LineTo
CreateCompatibleDC
GetStockObject
PatBlt

ole32

CoInitialize
StringFromGUID2
CoGetClassObject

version

GetFileVersionInfoW

Sections

.text
Size: 377KB - Virtual size: 377KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 166KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13dd33627368ddf2bc99fe682cf36b73

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

user32

advapi32

kernel32

gdi32

ole32

version

Sections

.text Size: 377KB - Virtual size: 377KB

.rdata Size: 143KB - Virtual size: 143KB

.data Size: 166KB - Virtual size: 1.6MB

.rsrc Size: 186KB - Virtual size: 185KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 377KB - Virtual size: 377KB

.rdata
Size: 143KB - Virtual size: 143KB

.data
Size: 166KB - Virtual size: 1.6MB

.rsrc
Size: 186KB - Virtual size: 185KB

.reloc
Size: 1KB - Virtual size: 1KB