d5d45140a16b8585e91d686b4d755cda103a0caba7b5e287db8a905d16f9f916

Sharing

Copy URL

Twitter E-mail

General

Target

d5d45140a16b8585e91d686b4d755cda103a0caba7b5e287db8a905d16f9f916
Size

7.5MB
MD5

5e693bcc71365f046c85ecc50ab6bbd1
SHA1

d659f580e5304b8dcf94d9ba937f83751cfab164
SHA256

d5d45140a16b8585e91d686b4d755cda103a0caba7b5e287db8a905d16f9f916
SHA512

81c45e966434236ee9c248eb8ab24e04bc73ec17c77cd8e531d3d33462f29329f2f1180c30b900e9d842ec6b75b58218dea1358d4d0880f675d6c594647e495e
SSDEEP

196608:UIbGxV3MU7WUnCW4To0OhaQBEnvGv+v14:rbi2U7r40L+vNG

Score

N/A

Malware Config

Signatures

Files

d5d45140a16b8585e91d686b4d755cda103a0caba7b5e287db8a905d16f9f916
.exe windows x86

1baae0f1e4807450421357a963e7acac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
HeapAlloc
GetProcessHeap
GetOEMCP
Sleep
VirtualFree
GetACP
CloseHandle
ReadFile
SetFilePointer
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
LockResource
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
GlobalFree
lstrlenA
GetSystemInfo
LCMapStringW
LeaveCriticalSection
CreateFileA
GetFileType
CreateFileW
CreateEventW
GlobalLock
WaitForMultipleObjects
FindNextFileA
FindFirstFileA
lstrcmpA
CompareStringW
GetProcAddress
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
QueryPerformanceCounter
GetVersion
LoadLibraryW
EnterCriticalSection
HeapFree
InterlockedIncrement
SetEndOfFile
GlobalAlloc
TerminateProcess
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
IsDebuggerPresent
GetModuleFileNameW
SetLastError
FormatMessageA
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
SetEvent
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
SetErrorMode
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetCommandLineA
GetLastError
GetCurrentThread
GetCurrentThreadId
GetTickCount
FreeLibrary
GetCurrentProcessId

user32

SetFocus
FillRect
CreateWindowExA
GetWindowLongA
RegisterClassA
LoadStringA
GetWindow
EnableWindow
ShowWindow
DefWindowProcA
GetParent
GetMessageA
DestroyWindow
PeekMessageA
GetCursorPos
GetDC
IsWindow
SetWindowPos
PostQuitMessage
SetForegroundWindow
LoadCursorA
LoadIconA
MessageBoxA
GetSysColor
SystemParametersInfoA
IsWindowVisible
InvalidateRect
SetWindowTextA
ReleaseDC
ScreenToClient

gdi32

SelectObject
DeleteDC
GetDeviceCaps
DeleteObject
BitBlt
GetStockObject

msvcrt

_exit
exit

Sections

.text
Size: 7.1MB - Virtual size: 7.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 394KB - Virtual size: 393KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1baae0f1e4807450421357a963e7acac

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Sections

.text Size: 7.1MB - Virtual size: 7.8MB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 15KB

.rsrc Size: 394KB - Virtual size: 393KB

.text
Size: 7.1MB - Virtual size: 7.8MB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 394KB - Virtual size: 393KB