c638caf51586baa3cad35e61f61a4c06f324e47372f39b44dbc87e885927ac94

Sharing

Copy URL Twitter E-mail

General

Target

c638caf51586baa3cad35e61f61a4c06f324e47372f39b44dbc87e885927ac94
Size

514KB
MD5

a2bd5a504d54038f74f05b80b002d42a
SHA1

49d9c2616e9a04df9af236e30cb98bf500e08628
SHA256

c638caf51586baa3cad35e61f61a4c06f324e47372f39b44dbc87e885927ac94
SHA512

397c7958836b9617a6b8dc222047adfd4e14cc05cee9c8bedd703945c74cc5c281d1d172b534038ae3c5dac16b7596295062275ddcae7ff2aa886448c598a265
SSDEEP

12288:gIhYCm2UErnBH5CTQvQGmJyDEQtMFaGXMttowi:g2mWrnBHc4uJ0EQtSAttXi

Score

N/A

Malware Config

Signatures

Files

c638caf51586baa3cad35e61f61a4c06f324e47372f39b44dbc87e885927ac94
.exe windows x86

5122809e88a6385548ca53b1b11b4519

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyAcceleratorTableA
IsCharAlphaNumericA
CreateMDIWindowA
IsCharUpperA
GetWindowDC
DlgDirSelectComboBoxExA
RegisterClassExA
DdeQueryStringW
DialogBoxParamA
RegisterClassA

comctl32

ImageList_Duplicate
ImageList_SetBkColor
DrawInsert
InitCommonControlsEx
CreateUpDownControl
ImageList_GetFlags
ImageList_DragMove
ImageList_DragShowNolock
ImageList_SetOverlayImage
ImageList_Replace
CreatePropertySheetPageA

kernel32

SetThreadContext
GetCurrentThread
HeapSize
GetCurrentProcess
WriteFile
TlsFree
IsValidCodePage
GetEnvironmentStrings
SetPriorityClass
SetUnhandledExceptionFilter
WriteProfileStringW
HeapAlloc
VirtualAlloc
GetConsoleOutputCP
SetEnvironmentVariableA
InterlockedIncrement
HeapCreate
SetStdHandle
IsValidLocale
SetConsoleCtrlHandler
GetACP
GetTimeZoneInformation
FreeEnvironmentStringsA
GetModuleFileNameW
UnhandledExceptionFilter
GetOEMCP
GetCurrentProcessId
Sleep
WriteConsoleA
LeaveCriticalSection
WriteConsoleW
FlushFileBuffers
SetLastError
TerminateProcess
FreeEnvironmentStringsW
SetFilePointer
EnterCriticalSection
GetModuleHandleA
GetTempFileNameW
GetLastError
SetComputerNameW
CompareStringW
HeapFree
QueryPerformanceCounter
CommConfigDialogA
GetCommandLineW
GetModuleFileNameA
DeleteAtom
InterlockedExchange
VirtualFree
GetStringTypeA
TlsGetValue
GetSystemTimeAsFileTime
LCMapStringW
GetStartupInfoA
GetVersionExA
EnumCalendarInfoW
GetCurrentThreadId
CreateMutexA
GetProcessHeap
GetLocaleInfoA
HeapReAlloc
CompareStringA
EnumSystemLocalesA
ExitProcess
GlobalLock
GetCommandLineA
GetProcAddress
CloseHandle
IsDebuggerPresent
CreateFileA
OpenMutexA
InterlockedDecrement
GetUserDefaultLCID
GetStdHandle
GetDateFormatA
LCMapStringA
GetCPInfo
GetTickCount
TlsAlloc
InitializeCriticalSection
SetHandleCount
WideCharToMultiByte
GetConsoleMode
DeleteCriticalSection
ReadFile
VirtualQuery
GetStartupInfoW
GetEnvironmentStringsW
GetConsoleCP
GetStringTypeW
GetLocaleInfoW
FreeLibrary
GetTimeFormatA
MultiByteToWideChar
HeapDestroy
GetCurrencyFormatA
TlsSetValue
GetFileType
RtlUnwind
LoadLibraryA

Sections

.text
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5122809e88a6385548ca53b1b11b4519

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 366KB - Virtual size: 366KB

.rdata Size: 16KB - Virtual size: 45KB

.data Size: 105KB - Virtual size: 104KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 366KB - Virtual size: 366KB

.rdata
Size: 16KB - Virtual size: 45KB

.data
Size: 105KB - Virtual size: 104KB

.rsrc
Size: 25KB - Virtual size: 25KB