18b89abd9243d711ce9ce1dfbb57eba0728b156ed3da30055421e0dcaab0cda1

General

Target

18b89abd9243d711ce9ce1dfbb57eba0728b156ed3da30055421e0dcaab0cda1
Size

119KB
MD5

44414276f6882ed19255e237e8437610
SHA1

fc6b10fefa59a143e8b947bb5f2f1ee23d7f084e
SHA256

18b89abd9243d711ce9ce1dfbb57eba0728b156ed3da30055421e0dcaab0cda1
SHA512

861b79b3ef0f37b75fcafe0f13053a6f68deae60cee0af744a6079a49b30a764004e59dd619d281bffdbc33c6795acffb158ea0b1f9ecff58648b04ca16b2b2b
SSDEEP

3072:unZ/TlXMzpFGEkZn5bs+bqWMBhUpqfNR6ntooNky9Ub8zp:4ZBczpEEkTbsyq5hUq6nim99

Score

N/A

Malware Config

Signatures

Files

18b89abd9243d711ce9ce1dfbb57eba0728b156ed3da30055421e0dcaab0cda1
.exe windows x86

ebc4f0347dd948f227d89f1172a911ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrlenW
WriteConsoleW
HeapCreate
lstrcpyA
GetFileAttributesW
WriteConsoleW
GetProcessHeap
SuspendThread
CloseHandle
GetCommandLineA
CreatePipe
GetCurrentDirectoryA
DisconnectNamedPipe
GetStartupInfoA
GetPriorityClass
GetStdHandle
GetModuleHandleA
SetEvent
WriteConsoleW
HeapDestroy
CopyFileW

msftedit

RichListBoxWndProc
SetCustomTextOutHandlerEx
RichEditWndProc
RichComboBoxWndProc

shell32

DragAcceptFiles
DuplicateIcon
ExtractIconA
DllUnregisterServer
SHFree
SHGetDiskFreeSpaceA
SHGetMalloc
DragQueryFileA
SHGetSettings
ShellAboutA
ShellMessageBoxA
DragFinish
StrChrA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ebc4f0347dd948f227d89f1172a911ec

Headers

File Characteristics

Imports

kernel32

msftedit

shell32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 776B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 132B

.impdata Size: 512B - Virtual size: 108B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 776B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 132B

.impdata
Size: 512B - Virtual size: 108B