89b605e608b8485f39db69aed5a48fb732607e601d7c7ede83191a8dd8c2bdbc

Sharing

Copy URL

Twitter E-mail

General

Target

89b605e608b8485f39db69aed5a48fb732607e601d7c7ede83191a8dd8c2bdbc
Size

544KB
MD5

8f99cc4a840f5cbffd7d7d3e9aa9d1c7
SHA1

b3d8ef50f5382f733c60cc66754c5ab0abe3fda8
SHA256

89b605e608b8485f39db69aed5a48fb732607e601d7c7ede83191a8dd8c2bdbc
SHA512

ea7a2c4af8a32409c2f9c94b453ab070b30b6968fa5561275ec68aab106be276fcae007beccf090416f2a2c3cb2b2ece7cf587d85feeddf2364f7f54789bb492
SSDEEP

12288:/aV28F0iEC4HXfcHaYuNcpWZsDOsh2hxAIuFOYnrFfUtOu:CV28F3HEXkHaYGcpWZ4chxUotOu

Score

N/A

Malware Config

Signatures

Files

89b605e608b8485f39db69aed5a48fb732607e601d7c7ede83191a8dd8c2bdbc
.exe windows x86

ed3a5b12f2c6952ec1527ead6dd86f6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

IsBadWritePtr
CloseHandle
SetEnvironmentVariableA
ExitProcess
TlsSetValue
SetPriorityClass
DeleteCriticalSection
WriteConsoleOutputAttribute
GetVersion
GetModuleFileNameA
EnumSystemCodePagesA
InitializeCriticalSection
RtlUnwind
QueryPerformanceCounter
HeapReAlloc
TlsAlloc
GetFileType
FlushFileBuffers
OpenMutexA
GetStdHandle
GetLocalTime
SetFilePointer
HeapValidate
ReadFile
GetStringTypeA
SetStdHandle
SetThreadIdealProcessor
GetSystemTimeAsFileTime
InterlockedIncrement
GetCurrentProcess
GetTickCount
GetACP
GetModuleHandleA
IsBadReadPtr
HeapAlloc
TerminateProcess
TlsGetValue
GetCommandLineA
HeapCreate
CreateMutexA
GetLastError
EnterCriticalSection
LoadLibraryA
VirtualQuery
GetOEMCP
LCMapStringA
GetCurrentThread
GetEnvironmentStrings
MultiByteToWideChar
GetCurrentThreadId
WriteFile
WideCharToMultiByte
InterlockedDecrement
VirtualAlloc
FreeEnvironmentStringsW
VirtualFree
GetPrivateProfileSectionW
CreateNamedPipeW
GetStartupInfoA
GetSystemTime
SetHandleCount
FreeEnvironmentStringsA
OutputDebugStringA
CompareStringA
SetLastError
GetTimeZoneInformation
UnhandledExceptionFilter
GetEnvironmentStringsW
GetCurrentProcessId
GetStringTypeW
DebugBreak
CompareStringW
HeapFree
SetConsoleCtrlHandler
LCMapStringW
InterlockedExchange
GetProcAddress
LeaveCriticalSection
HeapDestroy
GetCPInfo
TlsFree
GlobalGetAtomNameW

user32

RegisterClassA
FreeDDElParam
EnableScrollBar
DialogBoxIndirectParamA
WINNLSGetEnableStatus
CreateWindowStationA
LoadMenuW
IsMenu
BroadcastSystemMessageA
UpdateWindow
IsDialogMessageA
EndDeferWindowPos
HideCaret
RegisterClassExA

Sections

.text
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ed3a5b12f2c6952ec1527ead6dd86f6c

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 217KB - Virtual size: 216KB

.rdata Size: 7KB - Virtual size: 27KB

.data Size: 313KB - Virtual size: 313KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 217KB - Virtual size: 216KB

.rdata
Size: 7KB - Virtual size: 27KB

.data
Size: 313KB - Virtual size: 313KB

.rsrc
Size: 6KB - Virtual size: 5KB