5960f2e7ea41f2cc6a7e1927acd36fc831498572395e2355e998d65838548ec8

Sharing

Copy URL Twitter E-mail

General

Target

5960f2e7ea41f2cc6a7e1927acd36fc831498572395e2355e998d65838548ec8
Size

354KB
MD5

2605c034cb683ff2c5697245cdc51db7
SHA1

e840145fa11670750036fb341dd438715fd1e98f
SHA256

5960f2e7ea41f2cc6a7e1927acd36fc831498572395e2355e998d65838548ec8
SHA512

d31a9be56bbd2ccc58fb19f659af77a582ea39d93c44f8cfc2842145027862fb441feb81a482ecd93e89f1956e40ccd2568e06065e73ba9fe670510df46b0e22
SSDEEP

6144:Vzq1kTSS2fTMOSgwEx6NDOVR4+lYsAKFHXi8uqKPBdndoN2q+v/cnllhkgIjXXG:VgkeScTlSmxiDgm+lYsAAyhBF2N2q+H6

Score

N/A

Malware Config

Signatures

Files

5960f2e7ea41f2cc6a7e1927acd36fc831498572395e2355e998d65838548ec8
.exe windows x86

4c624440c51f1a5f8b3e5b73ecd75eeb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
WideCharToMultiByte
DeleteCriticalSection
GetCurrentThread
GetDateFormatA
CompareStringA
SetEnvironmentVariableA
TlsSetValue
GetCurrentProcessId
VirtualProtect
GetLocaleInfoA
GetPrivateProfileSectionA
SetLastError
LCMapStringW
VirtualAlloc
GetProcAddress
UnmapViewOfFile
FreeEnvironmentStringsW
LeaveCriticalSection
VirtualQuery
GetFileType
CloseHandle
GetStringTypeW
lstrcpyA
SetHandleCount
SetComputerNameW
GetEnvironmentStringsW
IsValidLocale
GetCommandLineA
GetStdHandle
GetTimeFormatA
GetLastError
HeapReAlloc
GetSystemInfo
GetCurrentProcess
GetStringTypeA
GetOEMCP
IsValidCodePage
GetModuleFileNameW
HeapSize
GetCurrentThreadId
GetLocaleInfoW
GlobalReAlloc
TlsGetValue
GetACP
GetTickCount
GetModuleHandleA
HeapFree
TlsAlloc
FlushFileBuffers
GetModuleFileNameA
GetSystemTimeAsFileTime
UnhandledExceptionFilter
WriteFile
GetStartupInfoA
GetVersionExA
GetTimeZoneInformation
GetCPInfo
LocalUnlock
GetEnvironmentStrings
QueryPerformanceCounter
GetStartupInfoW
InitializeCriticalSection
CreateMutexA
OpenMutexA
InterlockedExchange
GetUserDefaultLCID
EnumSystemLocalesA
FreeEnvironmentStringsA
MultiByteToWideChar
ExitProcess
EnterCriticalSection
TerminateProcess
TlsFree
IsBadWritePtr
SetFilePointer
HeapAlloc
HeapCreate
SetStdHandle
VirtualFree
LoadLibraryA
WriteConsoleW
HeapDestroy
RtlUnwind
GetCommandLineW
CompareStringW
ReadFile
GetConsoleCursorInfo

comctl32

InitCommonControlsEx

user32

DrawAnimatedRects
RegisterClassExA
GetWindow
RegisterDeviceNotificationA
DdeNameService
WINNLSGetEnableStatus
RegisterClassA

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c624440c51f1a5f8b3e5b73ecd75eeb

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 132KB - Virtual size: 132KB

.rdata Size: 7KB - Virtual size: 35KB

.data Size: 205KB - Virtual size: 205KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 132KB - Virtual size: 132KB

.rdata
Size: 7KB - Virtual size: 35KB

.data
Size: 205KB - Virtual size: 205KB

.rsrc
Size: 8KB - Virtual size: 7KB