f53342b574f544707edb1540408d4850c33d2b694e9d664bf864856db75cca59

Sharing

Copy URL Twitter E-mail

General

Target

f53342b574f544707edb1540408d4850c33d2b694e9d664bf864856db75cca59
Size

523KB
MD5

6e60844056c8157b2e8005ee6218bf18
SHA1

d3ebcb3671e18e7b6b15811662f92ae41dc48ad3
SHA256

f53342b574f544707edb1540408d4850c33d2b694e9d664bf864856db75cca59
SHA512

50362a6deffce564e75b16446d59b921da4ae1222e73dced7dc5f6088886322709d33e2008f57ec7e8a7260756674ed72e04461072dfde57abc7165bc49c9a65
SSDEEP

12288:+9VpzcV2IyDS8yEtzQDnys7Lbi7pkzJllw/n8JXKCiiZZ:+/RcMJD5FmnLbi7O7GIiiZ

Score

N/A

Malware Config

Signatures

Files

f53342b574f544707edb1540408d4850c33d2b694e9d664bf864856db75cca59
.exe windows x86

8becaa45eae01ae9f31fafc56ecda839

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

GetStringTypeA
DeleteCriticalSection
SetEnvironmentVariableA
HeapAlloc
HeapDestroy
GetCurrentThreadId
CompareStringA
SetLastError
HeapSize
GetModuleHandleW
RtlUnwind
GetModuleFileNameA
WriteConsoleW
MoveFileA
GetProcAddress
IsValidLocale
GetOEMCP
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
EnterCriticalSection
ExitProcess
GetStartupInfoA
HeapReAlloc
GetStringTypeW
GetCommandLineA
GetStdHandle
GetLocaleInfoA
IsValidCodePage
GetTickCount
TlsAlloc
FreeLibrary
GetModuleHandleA
TerminateProcess
GetLocaleInfoW
EnumSystemLocalesA
InterlockedIncrement
GetFileType
GetCurrentProcess
TlsSetValue
CloseHandle
GetModuleFileNameW
TlsGetValue
GetUserDefaultLCID
GetCurrentThread
GlobalFindAtomA
GetConsoleCP
Sleep
VirtualFree
FindClose
FreeEnvironmentStringsW
GetConsoleOutputCP
LCMapStringW
OpenMutexA
VirtualQuery
GetConsoleMode
WriteFile
FlushFileBuffers
WideCharToMultiByte
LeaveCriticalSection
InterlockedExchange
GetStartupInfoW
HeapCreate
WriteConsoleA
VirtualAlloc
SetConsoleCtrlHandler
CreateFileA
GetLastError
GetEnvironmentStringsW
LoadLibraryA
QueryPerformanceCounter
IsDebuggerPresent
LCMapStringA
SetStdHandle
GetACP
GetDateFormatA
CreateMutexA
MultiByteToWideChar
GetCommandLineW
InterlockedDecrement
SetHandleCount
GetCurrentProcessId
SetFilePointer
GetTimeZoneInformation
WaitCommEvent
GetTimeFormatA
TlsFree
GetCPInfo
HeapFree
UnhandledExceptionFilter
CompareStringW
ReadFile

user32

UnloadKeyboardLayout
RegisterClassExA
GetDlgCtrlID
MessageBoxA
ShowWindow
CreateWindowExA
CreateDialogParamW
RegisterClassA
DdeInitializeA
FrameRect

comdlg32

ChooseFontA
GetSaveFileNameW
LoadAlterBitmap

Sections

.text
Size: 316KB - Virtual size: 315KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8becaa45eae01ae9f31fafc56ecda839

Headers

File Characteristics

Imports

comctl32

kernel32

user32

comdlg32

Sections

.text Size: 316KB - Virtual size: 315KB

.rdata Size: 71KB - Virtual size: 97KB

.data Size: 116KB - Virtual size: 115KB

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 316KB - Virtual size: 315KB

.rdata
Size: 71KB - Virtual size: 97KB

.data
Size: 116KB - Virtual size: 115KB

.rsrc
Size: 19KB - Virtual size: 18KB