3ed9b32f503de26cdcff6eff07e0b79dfe8d659c97531e9145bf54fbdbb02aa9

Sharing

Copy URL

Twitter E-mail

General

Target

3ed9b32f503de26cdcff6eff07e0b79dfe8d659c97531e9145bf54fbdbb02aa9
Size

112KB
MD5

2ddbfd9e906a03e58a8319b0cebcd520
SHA1

c277c344031bc7da67b552fccd15eca5eeab44c2
SHA256

3ed9b32f503de26cdcff6eff07e0b79dfe8d659c97531e9145bf54fbdbb02aa9
SHA512

1b0e89dfd89041e4335b9a3e30fdd546734a53c9e6ceb4286f71cbdb69cccdb8030887df7452f26e2065a2135ae77a191b981042b74c5e75f5a10a959868955c
SSDEEP

1536:u/lDtQVFbl4L1bJ2pVHbT5LUk6f2z6Du9vdoER7r+nqHA10sMGt8XNfTSEiuSTan:u/lOlM1N2LTVUkc2z6DMljXG5WYByeQ

Score

N/A

Malware Config

Signatures

Files

3ed9b32f503de26cdcff6eff07e0b79dfe8d659c97531e9145bf54fbdbb02aa9
.exe windows x86

8ff2edbe801f7ff327bdf651991c705a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
GetFileAttributesA
GetFileAttributesExA
GetFileAttributesExW
GetFileAttributesW
GetFullPathNameA
GetFullPathNameW
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleFileNameW
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
GetVersionExW
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapValidate
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsDebuggerPresent
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
GetEnvironmentVariableA
LocalAlloc
LocalFree
MoveFileExW
MultiByteToWideChar
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
RaiseException
ReleaseMutex
ReleaseSemaphore
ResetEvent
SetErrorMode
SetEvent
SetFilePointer
SetLastError
SetUnhandledExceptionFilter
Sleep
SleepEx
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteFile
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetCurrentDirectoryA
GetConsoleOutputCP
GetCPInfo
GetACP
FreeLibrary
FormatMessageW
FormatMessageA
EnterCriticalSection
DeleteFileA
DeleteCriticalSection
DebugBreak
CreateSemaphoreW
CreateSemaphoreA
CreateProcessW
CreateProcessA
CreateMutexW
CreateMutexA
CreateFileW
CreateFileA
CreateEventW
CreateEventA
CopyFileA
CloseHandle
GetModuleHandleA
GetCommandLineW
VirtualAllocEx
lstrlenW
GetProcessHeap
GetDriveTypeW
GetModuleHandleW
LoadLibraryExW
LoadLibraryA

user32

IsDlgButtonChecked
LoadStringA
LoadStringW
GetActiveWindow
IsCharAlphaA
LoadBitmapA
LoadIconW
DestroyCursor
IsWindowEnabled
CharLowerW
CountClipboardFormats
GetForegroundWindow
IsGUIThread
IsMenu
GetMenuCheckMarkDimensions
GetMessagePos
CloseWindow
GetSysColor
LoadIconA
GetDialogBaseUnits
GetClipboardViewer
CharNextW
IsCharUpperA
CreateMenu
ShowCaret
DestroyIcon
GetFocus
GetParent
GetKeyboardLayout
IsWindowUnicode
IsCharAlphaNumericW
GetClipboardSequenceNumber
GetKeyboardType
UpdateWindow
VkKeyScanW
GetDC
DrawMenuBar
CharUpperA
GetWindowTextLengthA

gdi32

DeleteDC
CloseMetaFile
AddFontResourceW
EndPage
FlattenPath
BeginPath
SetBkMode
GetEnhMetaFileW
GetStockObject
GetPixelFormat
GetEnhMetaFileA
SelectObject
UpdateColors
DeleteColorSpace
SaveDC
WidenPath
GetSystemPaletteUse
EndPath
GdiFlush
SetTextAlign
CreateMetaFileW
CreateHalftonePalette
GetFontLanguageInfo
GetStretchBltMode
GetTextCharacterExtra
AbortDoc
CreateCompatibleDC
CloseEnhMetaFile
GetMapMode

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExA
RegQueryValueExA

winmm

timeGetTime

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ff2edbe801f7ff327bdf651991c705a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

winmm

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 65KB - Virtual size: 64KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 39KB - Virtual size: 39KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 65KB - Virtual size: 64KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 39KB - Virtual size: 39KB