72add9284113f2c7cdae8f79914e38c632f8bb66c417f6bf70cc980c81842385

Sharing

Copy URL Twitter E-mail

General

Target

72add9284113f2c7cdae8f79914e38c632f8bb66c417f6bf70cc980c81842385
Size

527KB
MD5

3d4121dfbccfb5db4f750e1f8d974756
SHA1

5c241eb18ab504b419a81b212899ba5f677c3d76
SHA256

72add9284113f2c7cdae8f79914e38c632f8bb66c417f6bf70cc980c81842385
SHA512

b6a3c0c7b33b58148d532a840da8cd1db34053f3070ff5dd4da701b3563a38bfe0062b3c2587a52207ff9fa986212bf4ef125095b9c69c115f80b17bb346e857
SSDEEP

12288:qZF1HxWe8nxAebsOxdGdx2yrFz4ycc0CUD:qZXHxWeqAAdGay61r

Score

N/A

Malware Config

Signatures

Files

72add9284113f2c7cdae8f79914e38c632f8bb66c417f6bf70cc980c81842385
.exe windows x86

6b29d826c6657c62f269808d55b7fe1b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetCapture
MessageBoxW
DestroyWindow
RegisterClassA
RegisterClassExA
CreateWindowExW
IsCharAlphaW
ClientToScreen
DefWindowProcA
ShowWindow

comctl32

CreateStatusWindowW
CreateToolbarEx
ImageList_Duplicate
ImageList_ReplaceIcon
_TrackMouseEvent
DrawInsert
ImageList_GetIcon
ImageList_LoadImageW
ImageList_Merge
ImageList_SetFlags
ImageList_LoadImage
CreatePropertySheetPageA
InitCommonControlsEx

kernel32

GetUserDefaultLangID
HeapCreate
GetConsoleOutputCP
GetEnvironmentStringsW
IsValidCodePage
EnterCriticalSection
GetConsoleCP
EnumSystemLocalesA
GetProcAddress
LoadLibraryA
GetEnvironmentStrings
VirtualFree
CreateMutexA
GetCommandLineW
SetEnvironmentVariableA
FlushFileBuffers
ReadFile
CloseHandle
LocalHandle
HeapAlloc
InitializeCriticalSection
SetUnhandledExceptionFilter
GetModuleFileNameA
FreeLibrary
LCMapStringA
HeapDestroy
GetLocaleInfoW
HeapFree
TlsFree
RtlUnwind
GetTimeFormatA
GetModuleFileNameW
WriteFile
VirtualAlloc
QueryPerformanceCounter
UnhandledExceptionFilter
TlsAlloc
OpenMutexA
GetStringTypeA
FreeEnvironmentStringsW
GetCurrentProcessId
GetDateFormatA
SetConsoleCtrlHandler
LeaveCriticalSection
GetLastError
GetACP
InterlockedIncrement
SetFilePointer
GetTickCount
DeleteCriticalSection
GetCurrentProcess
GetStdHandle
GetTimeZoneInformation
GetStartupInfoW
GetCommandLineA
GetConsoleMode
WriteConsoleW
GetCurrentThreadId
GetProcessHeap
CreateFileA
GetUserDefaultLCID
TerminateProcess
TlsGetValue
HeapReAlloc
GetOEMCP
GetFileType
InterlockedDecrement
ExitProcess
GetModuleHandleA
GetCurrentThread
MultiByteToWideChar
GetLocaleInfoA
InterlockedExchange
HeapSize
IsValidLocale
CompareStringA
GetStringTypeW
GetCPInfo
SetHandleCount
SetLastError
CompareStringW
FreeEnvironmentStringsA
TlsSetValue
GetStartupInfoA
IsDebuggerPresent
GetVersionExA
LCMapStringW
WriteConsoleA
GetSystemTimeAsFileTime
SetStdHandle
WideCharToMultiByte
VirtualQuery
Sleep

Sections

.text
Size: 197KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 209KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b29d826c6657c62f269808d55b7fe1b

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 197KB - Virtual size: 196KB

.rdata Size: 209KB - Virtual size: 221KB

.data Size: 110KB - Virtual size: 109KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 197KB - Virtual size: 196KB

.rdata
Size: 209KB - Virtual size: 221KB

.data
Size: 110KB - Virtual size: 109KB

.rsrc
Size: 10KB - Virtual size: 9KB