e58236e3280b45e62f7717e9e3a1b4c61b2e2d409a8bae51ac8c731a27e3f356

Sharing

Copy URL Twitter E-mail

General

Target

e58236e3280b45e62f7717e9e3a1b4c61b2e2d409a8bae51ac8c731a27e3f356
Size

576KB
MD5

3d6efd53b9b39cf704e2be8fbfb15765
SHA1

304b36910dac3cf5654fb226b3fcd6fd0f4be94c
SHA256

e58236e3280b45e62f7717e9e3a1b4c61b2e2d409a8bae51ac8c731a27e3f356
SHA512

43fa7fef7ea91b3993b047a31695813554e5f56410395eab01afae64cd7bd814bf0c9c2e1987a2e5911ca727f597f83ba8aa6f665ef5f1f53c556d17346def25
SSDEEP

6144:F7vkjirGUkBLJAVp9FQ/sTaXu0+V+wXodgoqhm6uGDxRCJrpJn31zma1gUs2cRXt:FVXkBtoQ/sa+RYdg1hdFRCVT9gN

Score

N/A

Malware Config

Signatures

Files

e58236e3280b45e62f7717e9e3a1b4c61b2e2d409a8bae51ac8c731a27e3f356
.exe windows x86

dd771c153ca845e58d0062c7dbdc10a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoUnmarshalInterface
CoInitialize
CoMarshalInterface
CoUninitialize
CreateStreamOnHGlobal
CoRegisterClassObject
CoRevokeClassObject

advapi32

RegEnumValueA
RegOpenKeyExA

kernel32

GetVersion
MultiByteToWideChar
FreeEnvironmentStringsA
GetStringTypeW
CloseHandle
ReleaseMutex
DeleteCriticalSection
InitializeCriticalSection
GetLastError
WaitForSingleObject
CreateMutexA
FreeLibrary
GetProcAddress
LoadLibraryA
SetErrorMode
InterlockedDecrement
InterlockedIncrement
CreateThread
IsBadWritePtr
IsBadReadPtr
CreateEventA
SetEvent
ExitProcess
lstrcpyA
lstrlenA
GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock
GlobalHandle
HeapFree
GetCurrentProcess
WriteProfileStringA
WriteProfileSectionA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetStringTypeA
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameA
VirtualAlloc
HeapAlloc
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetFileType
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
WriteFile

user32

PostQuitMessage
DefWindowProcA
GetWindowLongA
SendMessageA
wsprintfA
UnregisterClassA
DispatchMessageA
TranslateMessage
GetMessageA
CreateWindowExA
RegisterClassA
FindWindowA
PostMessageA
DestroyWindow
GetClassInfoA
PostThreadMessageA
MsgWaitForMultipleObjects
PeekMessageA
SetTimer
IsWindow
KillTimer
SetWindowLongA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.vmp1
Size: 540KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dd771c153ca845e58d0062c7dbdc10a7

Headers

File Characteristics

Imports

ole32

advapi32

kernel32

user32

Sections

.text Size: 23KB - Virtual size: 23KB

.data Size: 5KB - Virtual size: 5KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.vmp1 Size: 540KB - Virtual size: 1.6MB

.text
Size: 23KB - Virtual size: 23KB

.data
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB

.vmp1
Size: 540KB - Virtual size: 1.6MB