fbe2e0adc86d23774f5d2e5e81f1ef42f23170b8de32b1624fbbca4994e9ff83

Sharing

Copy URL Twitter E-mail

General

Target

fbe2e0adc86d23774f5d2e5e81f1ef42f23170b8de32b1624fbbca4994e9ff83
Size

170KB
MD5

30d48fbb6dc6c03b9fe727a18c564ec0
SHA1

0b017dbed657d72bc3465d7a55b05f2d236dc1ec
SHA256

fbe2e0adc86d23774f5d2e5e81f1ef42f23170b8de32b1624fbbca4994e9ff83
SHA512

c8012e33c217dc015aa2be268789eba9ca9659905aa459cc4324be2d8959eeb141ff820656faf8c19640fcbf83d4ccb6547e7744dd14d59294f49e35c9740977
SSDEEP

3072:U0B1dT7bec2S+ps7aFJmhN5eoJhaz2aAVR6m22j5QDDfI:5Bb7batSazW5vha6aoRl55QDc

Score

N/A

Malware Config

Signatures

Files

fbe2e0adc86d23774f5d2e5e81f1ef42f23170b8de32b1624fbbca4994e9ff83
.exe windows x86

492aed0bf230f2fd476cd21f569a3b54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleFileNameW
FreeLibrary
CloseHandle
GetModuleHandleW
LoadLibraryW
GetFileAttributesW
CreateFileW
DeleteCriticalSection
ExpandEnvironmentStringsW
GetComputerNameW
WriteFile
EnterCriticalSection
ReadFile
SetFilePointer
InitializeCriticalSection
GetFileSizeEx
GetVersionExW
LoadLibraryA
LeaveCriticalSection
GetFileAttributesExW
lstrcmpiW
lstrcatW
lstrcpyW
lstrlenW
GetLocaleInfoA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
Sleep
HeapSize
ExitProcess
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RaiseException
HeapReAlloc
VirtualAlloc
RtlUnwind
LCMapStringA
WideCharToMultiByte
LCMapStringW
GetStringTypeA
GetStringTypeW

shell32

SHGetPathFromIDListW
SHGetSpecialFolderLocation

ole32

CoTaskMemFree
OleInitialize
OleUninitialize

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

492aed0bf230f2fd476cd21f569a3b54

Headers

File Characteristics

Imports

kernel32

shell32

ole32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 3KB - Virtual size: 7KB

.rsrc Size: 93KB - Virtual size: 96KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 3KB - Virtual size: 7KB

.rsrc
Size: 93KB - Virtual size: 96KB