1d2458e5e6fdf717c15374e9a623ae1d2574f9ceb18d30b6410c779ecaedf185

Sharing

Copy URL Twitter E-mail

General

Target

1d2458e5e6fdf717c15374e9a623ae1d2574f9ceb18d30b6410c779ecaedf185
Size

573KB
MD5

a5b73db3250801962bfa38f26aba9df3
SHA1

781b49dd5edc7a9309111783ae0b355330308f19
SHA256

1d2458e5e6fdf717c15374e9a623ae1d2574f9ceb18d30b6410c779ecaedf185
SHA512

dcd8a6dc4843106e0f827d51fc33d52e0c5519582501aff6a980194f9d67073b3483f0191ca3a2fcc32ba3169e2806898948cb35635d09de1f2aa88df0e302e5
SSDEEP

6144:aLgyysVYtfZ1PZDsobi+Xff5WIqZQgCUt5l:akyysezFVqZQgV

Score

N/A

Malware Config

Signatures

Files

1d2458e5e6fdf717c15374e9a623ae1d2574f9ceb18d30b6410c779ecaedf185
.exe windows x86

fe5dfb7e8929d761851a5a9d8717fb6b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetTickCount
VirtualFree
GetProcessHeap
FlushInstructionCache
GetTempPathW
OpenMutexW
VirtualAlloc
GetModuleFileNameA
OutputDebugStringA
GetDiskFreeSpaceExA
GetVersion
GetCurrentProcess
FlushFileBuffers
CloseHandle
CreateFileA
HeapSize
GetLocaleInfoA
GetCPInfo
GetDriveTypeW
GetTempPathA
GetCommandLineW
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
HeapFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
EnterCriticalSection
LeaveCriticalSection
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapAlloc
HeapReAlloc
RtlUnwind
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

user32

GetWindowTextLengthW
IsIconic
LoadBitmapA
LoadCursorW
GetForegroundWindow
IsWindowUnicode
GetDesktopWindow
GetCursorPos
LoadBitmapW
LoadCursorA

advapi32

RegOpenKeyExA
GetCurrentHwProfileA
GetCurrentHwProfileW

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 510KB - Virtual size: 509KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe5dfb7e8929d761851a5a9d8717fb6b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 35KB - Virtual size: 34KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 510KB - Virtual size: 509KB

.text
Size: 35KB - Virtual size: 34KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 510KB - Virtual size: 509KB