d0447896dedffa7ab6638e0a12be022ac715de71b9d708d306f26afc40f0fc78

Sharing

Copy URL Twitter E-mail

General

Target

d0447896dedffa7ab6638e0a12be022ac715de71b9d708d306f26afc40f0fc78
Size

44KB
MD5

0c3b8f512d3a3e96c754fcaf16a84155
SHA1

b7b13f795e0671f9bbc0f41e5679abc8fba03cb9
SHA256

d0447896dedffa7ab6638e0a12be022ac715de71b9d708d306f26afc40f0fc78
SHA512

f5d2131e850beeeb0f2468f1d99fe4f2cafccebbb8e7113100ea38838c3790e77216986a4f2df5d95ed6608aa3107b5e0efe372fd6836cf5e97acd68c3e48063
SSDEEP

768:TRzTDefH6M1bAJ4nz+v+gZY0pGFPCl5tTWi32yJyz+Gt+Gx8oOb:T1Aj1bA2naPpGFalbn5Qv+b

Score

N/A

Malware Config

Signatures

Files

d0447896dedffa7ab6638e0a12be022ac715de71b9d708d306f26afc40f0fc78
.exe windows x86

8dfc9155712eb2ae5e5e760567800dd6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
InterlockedIncrement
LeaveCriticalSection
GetTickCount
GetModuleHandleA
GetCurrentProcess
DeleteCriticalSection
GetCurrentProcess
InterlockedExchange
CreateEventW
GetModuleHandleW
GetCurrentProcessId
HeapAlloc
GetProcessHeap
GetProcessHeap
MultiByteToWideChar
GetVersionExA
GetLastError
GetModuleFileNameW
GetProcessHeap
HeapAlloc
GetModuleHandleW
lstrlenA
InitializeCriticalSection
DeleteCriticalSection
GetCurrentProcessId
ReadFile
CloseHandle
DisableThreadLibraryCalls
CreateFileW
GetCurrentThreadId
CreateEventW
HeapDestroy
LeaveCriticalSection
VirtualAlloc
InterlockedCompareExchange
GetCurrentThreadId
GetCurrentProcess
VirtualAlloc
InterlockedCompareExchange
InterlockedDecrement
LocalAlloc
GetVersionExA
GetModuleHandleA
CreateThread
lstrlenA
lstrlenA
HeapDestroy
EnterCriticalSection
InitializeCriticalSection
SetLastError
InterlockedDecrement
GetProcessHeap
EnterCriticalSection
CreateEventW
CreateFileW
lstrlenA
CloseHandle
lstrlenA
InterlockedExchange
LeaveCriticalSection
HeapFree
LoadLibraryW
EnterCriticalSection
VirtualProtect
LocalFree
GetCurrentThreadId
GetModuleFileNameA
CreateFileW
CloseHandle
LoadLibraryW
InitializeCriticalSection
GetCurrentProcess
Sleep
InterlockedExchange
LeaveCriticalSection
GetModuleFileNameW
LocalAlloc
LocalFree
EnterCriticalSection
InterlockedCompareExchange
CloseHandle
InitializeCriticalSection
HeapDestroy
LeaveCriticalSection
GetModuleHandleA
lstrlenA
InitializeCriticalSection
CreateFileW
SetLastError
GetSystemTimeAsFileTime
Sleep
InitializeCriticalSection
GetModuleHandleW
CreateThread
GetModuleHandleA
GetModuleHandleA
GetTickCount
VirtualProtect
CreateThread
HeapDestroy
FreeLibrary
InterlockedIncrement
GetProcAddress
InterlockedDecrement
QueryPerformanceCounter
MultiByteToWideChar

user32

SetWindowPos
DefWindowProcW
LoadCursorW
SetCursor
GetFocus
DialogBoxParamW
GetWindowRect
wsprintfA
GetParent
PostQuitMessage
ShowWindow
GetWindowRect
TranslateMessage
GetDlgItem
DestroyWindow
KillTimer
GetDC
LoadStringW
SetCursor
SendMessageW
PeekMessageW
wsprintfA
DestroyWindow
TranslateMessage
SetCursor
EnableWindow
GetParent
SetWindowTextW
GetWindowLongW
PostQuitMessage
GetDlgItem
GetClientRect
LoadCursorW
BeginPaint
DefWindowProcW
LoadCursorW
KillTimer
GetDlgItem
EnableWindow
SetWindowLongW
DialogBoxParamW
LoadCursorW
DefWindowProcW
DispatchMessageW
DestroyWindow
DestroyWindow
ReleaseDC
BeginPaint
ReleaseDC
EndPaint
PostMessageW
CharNextW
KillTimer
GetFocus
SetTimer
CharNextW
GetClientRect
PostMessageW
ReleaseDC
SetForegroundWindow
SetTimer
SetWindowTextW
SetWindowTextW
GetSysColor
ShowWindow
SetWindowTextW
DialogBoxParamW
GetDlgItem
DialogBoxParamW
SetWindowPos
PeekMessageW
GetWindowLongW
SetCursor
SetFocus
PeekMessageW
GetParent
SetWindowLongW
EnableWindow
CharNextW
EndPaint
EndDialog
DispatchMessageW
GetClientRect
LoadCursorW
SetTimer
MessageBoxW
GetParent
GetClientRect
KillTimer
IsWindow
SetFocus
DialogBoxParamW
ShowWindow
SendMessageW
DestroyWindow
GetDlgItem
EnableWindow
SetWindowPos
KillTimer
DispatchMessageW
SendMessageW
DialogBoxParamW
LoadIconW
SendMessageW

Sections

.text
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8dfc9155712eb2ae5e5e760567800dd6

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 34KB - Virtual size: 36KB

.data Size: - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 3KB - Virtual size: 4KB

.text
Size: 34KB - Virtual size: 36KB

.data
Size: - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 3KB - Virtual size: 4KB