99a935b337fb2ae0238953ed0c854d36eee59b83210e13224f3500baf1844182

Sharing

Copy URL Twitter E-mail

General

Target

99a935b337fb2ae0238953ed0c854d36eee59b83210e13224f3500baf1844182
Size

841KB
MD5

388431e56b055d57fbf1daaee294f330
SHA1

54cedf68672eaae3c4ce62f806e0f51978809eb5
SHA256

99a935b337fb2ae0238953ed0c854d36eee59b83210e13224f3500baf1844182
SHA512

52724990ab5fcf0dcb943fb5dcca9655d9ef07b45bc809a12eb51e327069248fe294b9805902d76b56b8143e4a58c2c7e9bad760b95504196cc533e1abc71675
SSDEEP

24576:5IZ9wivgBeSG+VUwpyaIpy6FwQu5PIg7d1PCqd:5IZ9wivgBeSGKUwpyaIpyawQwPR1Ptd

Score

N/A

Malware Config

Signatures

Files

99a935b337fb2ae0238953ed0c854d36eee59b83210e13224f3500baf1844182
.exe windows x86

100e3aa24d8bb1a06db8d0c0a50c4069

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetCommandLineA
GetSystemDirectoryW
GetModuleFileNameW
lstrlenW
FlushInstructionCache
GetTempPathW
GetCurrentDirectoryW
VirtualAlloc
OpenMutexA
GetModuleFileNameA
IsDebuggerPresent
OutputDebugStringA
GetVersion
GetTickCount
FlushFileBuffers
CloseHandle
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
InitializeCriticalSectionAndSpinCount
LoadLibraryA
GetModuleHandleW
GetCurrentProcess
GetCPInfo
GetCurrentProcessId
GetCommandLineW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
RaiseException
RtlUnwind
HeapAlloc
GetLastError
HeapFree
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
Sleep
ExitProcess
WriteFile
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
HeapCreate
QueryPerformanceCounter
GetSystemTimeAsFileTime
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize

user32

GetWindowTextLengthW
GetWindowRect
LoadBitmapA
GetForegroundWindow
GetWindowTextA
IsWindowUnicode
GetDesktopWindow
GetCursorPos
LoadBitmapW
IsWindowVisible
GetProcessDefaultLayout
GetMessagePos
GetWindowTextW

advapi32

GetUserNameA
RegOpenKeyExW
GetUserNameW
GetCurrentHwProfileW

shell32

CommandLineToArgvW

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 770KB - Virtual size: 770KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

100e3aa24d8bb1a06db8d0c0a50c4069

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Sections

.text Size: 54KB - Virtual size: 53KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 12KB

.rsrc Size: 770KB - Virtual size: 770KB

.text
Size: 54KB - Virtual size: 53KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 12KB

.rsrc
Size: 770KB - Virtual size: 770KB