1fe618c4e66f56b1c783b362ab6135d2adc3d25524442f92ae9d536ee9a5211b

Sharing

Copy URL

Twitter E-mail

General

Target

1fe618c4e66f56b1c783b362ab6135d2adc3d25524442f92ae9d536ee9a5211b
Size

140KB
MD5

063a3f1f8fd88232cdd70b8fbf3466a3
SHA1

2478a6080f6fad3ccec17173a719194882572397
SHA256

1fe618c4e66f56b1c783b362ab6135d2adc3d25524442f92ae9d536ee9a5211b
SHA512

574a06346d5211ac24db10ead0ca31624b12a7fa6cfd85375a17eac317a9aee3f77ec9bf25366ba24f4d90858d06de9238f881f41fdb945eb926b776be8bc7d4
SSDEEP

3072:Weh6ZS5x79YLzf2SQPQectIv4HNLarGNz8ly45kJSh+8iFsp:NCS5if2SQPQEv4HNLaKN+dmJShksp

Score

N/A

Malware Config

Signatures

Files

1fe618c4e66f56b1c783b362ab6135d2adc3d25524442f92ae9d536ee9a5211b
.exe windows x86

4aa2e1878f9540ef00e6df7b9449e67f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenSemaphoreW
FindCloseChangeNotification
AddAtomW
GetWindowsDirectoryW
ReadFile
GetPrivateProfileStringW
LocalUnlock
GetCurrentThreadId
GetCommState
OpenFileMappingA
GetModuleFileNameA
LockResource
GetModuleHandleA
DefineDosDeviceW
GetVersionExW
GlobalFindAtomW
GetThreadPriority
GetFileAttributesA
GetTempFileNameW
RaiseException
GetExitCodeThread
FindNextFileW
lstrlenA
lstrcmpW
CreateFileA
GetSystemTime
SetCommMask
CopyFileW
IsBadReadPtr
GlobalLock
lstrcatA
GetTempFileNameA
GetLocaleInfoW
GetStartupInfoA
DeleteAtom
lstrcmpiW
GetThreadContext
CreateSemaphoreA
GetShortPathNameA
DisconnectNamedPipe
WinExec
IsBadWritePtr
lstrcpyW
SetThreadContext
GetTickCount
OpenEventW
GetSystemWindowsDirectoryA
SetEvent
GetCompressedFileSizeW
WideCharToMultiByte
CreateNamedPipeA
SuspendThread
CreateMutexW
DuplicateHandle
GetSystemInfo
CallNamedPipeW
TerminateThread
GetVersionExA
GetAtomNameW
EnumResourceTypesA
GetSystemDefaultUILanguage
SetFileApisToOEM
ConnectNamedPipe
GetFileInformationByHandle
MoveFileW
CreateThread
GetPriorityClass
GetStdHandle
GetLongPathNameW
DeviceIoControl
TryEnterCriticalSection
GetComputerNameExW
MoveFileExA
EnumResourceNamesA
CompareStringW
UnhandledExceptionFilter
CreateMutexA
IsValidLanguageGroup
GetCommModemStatus
GetTimeFormatA
HeapCreate
CancelWaitableTimer
GetCommandLineA
GetUserDefaultLangID
SetTimerQueueTimer
FindResourceW
FindFirstChangeNotificationW
GlobalMemoryStatus
SetLocalTime
SetMailslotInfo
SetSystemTimeAdjustment
DeleteFileW
GetFullPathNameW
GlobalReAlloc
SizeofResource
SetFileAttributesA
lstrcmpiA
WaitForSingleObject
GetSystemWindowsDirectoryW
GetBinaryTypeW
FindResourceExW
GetAtomNameA
TlsFree
VirtualProtect
GetModuleFileNameW
lstrcatW
EnumSystemLocalesA
GetProcAddress
GetSystemDefaultLangID
CloseHandle
FindResourceA
GetSystemDirectoryW
SetHandleCount
GetTimeZoneInformation

Exports

Exports

?AightDialog@@YGEUtext@@@Z
?NineDialog@@YGEUtext@@@Z
?Versus1@@YGEUtext@@@Z

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.okan
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.push3
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4aa2e1878f9540ef00e6df7b9449e67f

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 30KB - Virtual size: 30KB

.idata Size: 3KB - Virtual size: 2KB

.data Size: 26KB - Virtual size: 26KB

.okan Size: 16KB - Virtual size: 16KB

.push3 Size: 12KB - Virtual size: 11KB

.rsrc Size: 48KB - Virtual size: 48KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 30KB - Virtual size: 30KB

.idata
Size: 3KB - Virtual size: 2KB

.data
Size: 26KB - Virtual size: 26KB

.okan
Size: 16KB - Virtual size: 16KB

.push3
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 48KB - Virtual size: 48KB

.reloc
Size: 2KB - Virtual size: 1KB