e4dfcf3db512260e1a4ff414907610d5d5279143fa9ade9219d8691be02e512f

Sharing

Copy URL

Twitter E-mail

General

Target

e4dfcf3db512260e1a4ff414907610d5d5279143fa9ade9219d8691be02e512f
Size

147KB
MD5

9d2caebe539c08a5809d04a1b4a17700
SHA1

625ef938725d9a70b45a47273ed7cde84cef4ea5
SHA256

e4dfcf3db512260e1a4ff414907610d5d5279143fa9ade9219d8691be02e512f
SHA512

1151c84b2450372f2ffd7c0431e669c529801e23036b0e47eb0bc4ffee3856d2394e2d7a9386d479ee0a96e166f92cad38ca44589c260293382f73b70208de97
SSDEEP

3072:jdWfG6HPtQ+4VbLqXd79pqp1j1JAlYaeUbcA+Mx/i8pjHUafB:j96HPtQ+4Vbmdxgj7VaeUJ7xhHUaZ

Score

N/A

Malware Config

Signatures

Files

e4dfcf3db512260e1a4ff414907610d5d5279143fa9ade9219d8691be02e512f
.exe windows x86

593fc987af8d54ecbdc2ac3a6213eba0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
GetCurrentThreadId
GetDiskFreeSpaceExA
GetVersion
GetCurrentProcessId
FlushFileBuffers
CloseHandle
CreateFileW
HeapSize
RaiseException
HeapReAlloc
GetOEMCP
GetStringTypeW
LCMapStringW
MultiByteToWideChar
WriteConsoleW
SetStdHandle
RtlUnwind
LoadLibraryW
Sleep
HeapFree
IsValidCodePage
LeaveCriticalSection
EnterCriticalSection
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
GetLocalTime
VirtualAlloc
GetThreadLocale
GetLastError
GetACP
GetCommandLineW
GetCommandLineA
GetProcessHeap
VirtualFree
GetCurrentThread
GetTickCount
GetModuleHandleW
GetCurrentProcess
GetCPInfo
HeapAlloc
HeapSetInformation
GetStartupInfoW
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
EncodePointer
TerminateProcess
IsProcessorFeaturePresent
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetSystemTimeAsFileTime
SetFilePointer

user32

IsIconic
GetKeyState
GetParent
IsWindowEnabled
GetDlgItem
GetSysColor
CheckDlgButton
IsDlgButtonChecked
GetSystemMetrics
IsWindowVisible
GetMessageTime
GetMessagePos
GetWindow

gdi32

SetTextColor
GetBkMode
GetCurrentObject
SetBkColor
SelectObject
Rectangle
GetMapMode
Ellipse
PtVisible
GetObjectType
GetBkColor
GetNearestColor
SetROP2
GetTextColor
SetBkMode

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

593fc987af8d54ecbdc2ac3a6213eba0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 63KB - Virtual size: 63KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 63KB - Virtual size: 63KB