8e75399ed6d56e8b467b0a2fb22f6350fab20845b527e77a75ff9e144ffd8da7

Sharing

Copy URL

Twitter E-mail

General

Target

8e75399ed6d56e8b467b0a2fb22f6350fab20845b527e77a75ff9e144ffd8da7
Size

177KB
MD5

85d12cca6fe4acfe9f8c084b1b11cb7f
SHA1

db9fccb5297821adc2cfc0f90b56c1bd0db99106
SHA256

8e75399ed6d56e8b467b0a2fb22f6350fab20845b527e77a75ff9e144ffd8da7
SHA512

8eeaca9eb07c8da6339e441a12e0812dcd577329694c0e12ce1c4e9b7dd4df2b07aae41387434528d2fed23b02e667ff6af472a798fe04517819085155d2b236
SSDEEP

1536:UzgGrlZdaFC0eeDLdNRhRAeAZoNbr9rhoyK6vIg7pIVfB4nTEo+xo:U8y30e0Ld3boyK6h4fBRbo

Score

N/A

Malware Config

Signatures

Files

8e75399ed6d56e8b467b0a2fb22f6350fab20845b527e77a75ff9e144ffd8da7
.exe windows x86

e4c46da7cb0e3b1be7a250242a54ec5e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
OffsetRect
UnionRect
IsZoomed
GetSystemMetrics
PtInRect
BeginPaint
DrawFrameControl
EndPaint
SetPropW
CallWindowProcW
DefWindowProcW
GetClientRect
CopyRect
GetWindowLongW
GetParent
ShowWindow
SetWindowLongW
GetKeyState
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetCursorPos
SetWindowPos
PostMessageW
SendMessageW
MessageBoxW
EndDialog
GetDlgItem
GetWindowRect
MoveWindow
SetDlgItemTextW
LoadCursorW
EnableWindow

gdi32

SetMapMode
GetDeviceCaps
GetTextExtentPoint32W
ExtTextOutW
SetTextAlign
RestoreDC
Rectangle
CreatePen
SetROP2
SaveDC
CreateCompatibleBitmap
LineTo
MoveToEx
GetTextMetricsW
Polyline
CreateFontIndirectW
StartDocW

kernel32

GetLocaleInfoA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
QueryPerformanceCounter
VirtualFree
HeapCreate
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
WriteFile
ExitProcess
SetFilePointer
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
RtlUnwind
HeapAlloc
HeapReAlloc
VirtualAlloc
LoadLibraryA
HeapSize
CloseHandle
GetTickCount
DecodeSystemPointer
GetLastError
FlushInstructionCache
LocalShrink
OpenProcess
CreateJobSet
PurgeComm
GlobalWire
FindVolumeClose
ReleaseMutex
EscapeCommFunction
GetCommandLineW
GlobalUnfix
SetHandleCount
GlobalCompact
GetProcessPriorityBoost
ConvertThreadToFiber
GetModuleFileNameW
GetThreadPriority
LockResource
CreateTapePartition
GetNamedPipeInfo
ClearCommError
GetFileType
PulseEvent
FreeResource
EraseTape
QueryMemoryResourceNotification
UnlockFile
AreFileApisANSI
AssignProcessToJobObject
CreateNamedPipeW
SetStdHandle
PrepareTape
BindIoCompletionCallback
CreateFiber
SetSystemPowerState
GetFileSize
UpdateResourceW
DisableThreadLibraryCalls
MapUserPhysicalPagesScatter
GetCommMask
GetNumaNodeProcessorMask
QueryInformationJobObject
GetThreadContext
ReplaceFileA
LocalUnlock
SetProcessWorkingSetSize
SetMessageWaitingIndicator
DefineDosDeviceW
GetThreadSelectorEntry
SetInformationJobObject
FlushFileBuffers
GetDevicePowerState
GetProcessVersion
GlobalUnWire
FlushViewOfFile
RemoveVectoredExceptionHandler
GetProcessHandleCount
GetModuleFileNameA
GetProcessHeap
FindNextChangeNotification
GetCurrentProcess
SetProcessPriorityBoost
GetTapeParameters
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsW
DeactivateActCtx
ResetWriteWatch
GetCommTimeouts
DisconnectNamedPipe
RequestDeviceWakeup
GetProcessAffinityMask
GetFileInformationByHandle
CreateMemoryResourceNotification
GetHandleInformation
GetTapeStatus
GetPriorityClass
IsWow64Process
GetCurrentThread
IsProcessInJob
SetTapeParameters
GetThreadTimes
TlsGetValue
FormatMessageA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
CreateFileA
GetTimeZoneInformation
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
GetStartupInfoA
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleW
GetProcAddress
TlsAlloc
TlsSetValue
TlsFree
SetLastError
LCMapStringW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WideCharToMultiByte
GetStdHandle
DeleteCriticalSection
Sleep
HeapFree

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 761KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4c46da7cb0e3b1be7a250242a54ec5e

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 126KB - Virtual size: 125KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 6KB - Virtual size: 761KB

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 126KB - Virtual size: 125KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 6KB - Virtual size: 761KB

.rsrc
Size: 32KB - Virtual size: 32KB