fb4e386e0887ddeb2a497d33e5a07ad6744c933947db9dca6f8746acc28e36b9

Sharing

Copy URL Twitter E-mail

General

Target

fb4e386e0887ddeb2a497d33e5a07ad6744c933947db9dca6f8746acc28e36b9
Size

216KB
MD5

9a059a86262a7a6b2feef3790baae717
SHA1

afb2a50fc7f0ca1c10a7fe706f903df188d4817d
SHA256

fb4e386e0887ddeb2a497d33e5a07ad6744c933947db9dca6f8746acc28e36b9
SHA512

fce3a9e12caf43bcf8196ce5a0746a3bb0ac5c5b074a7c769f71cdede3e5b2438c30eab091cd2904711c0f2e1b39ea496c7ccef21ef226b93dc0eac0af218f94
SSDEEP

3072:zWkRH4S5+V2Mf70boNT41ZmvowQw5vjRNZOMjaspUVyS5hWAr44mD:zVYS544lyvowhBZOidpUVyl

Score

N/A

Malware Config

Signatures

Files

fb4e386e0887ddeb2a497d33e5a07ad6744c933947db9dca6f8746acc28e36b9
.exe windows x86

fd3a27f0126337eaddb0f643ad8f6c60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLangID
SetConsoleActiveScreenBuffer
WriteConsoleOutputW
AreFileApisANSI
GetShortPathNameA
CreateMutexW
WritePrivateProfileStringA
EnumSystemCodePagesW
GetCommConfig
GlobalFlags
DeleteFiber
SetTimeZoneInformation
CreateWaitableTimerA
CreateProcessA
AllocConsole
FindCloseChangeNotification
GetShortPathNameW
GetNumberFormatW
DebugBreak
FormatMessageA
WriteFile
GetTempPathW
GetModuleHandleA
VirtualQuery
OutputDebugStringA
FindFirstFileA
VirtualFree
ReadConsoleOutputA
SetEnvironmentVariableW
SetHandleCount
CloseHandle
SetCommTimeouts
InitializeCriticalSection
SetFileAttributesA
GetCurrentDirectoryW
QueryDosDeviceW
EnumSystemCodePagesA
PeekConsoleInputW
SetConsoleOutputCP
GetBinaryTypeA
VirtualAlloc
GetPrivateProfileStringA
IsDBCSLeadByteEx
GetStartupInfoA

user32

PostMessageW
ActivateKeyboardLayout
CreateAcceleratorTableA
SetClipboardData

gdi32

SelectPalette
OffsetWindowOrgEx
CreateFontIndirectA
GetTextMetricsA
SetLayout
PaintRgn
GetBkColor
GetNearestPaletteIndex
PatBlt
DescribePixelFormat

advapi32

RegCreateKeyExW
IsValidSid
CryptSetKeyParam
RegQueryValueExW
DeregisterEventSource
RegSaveKeyA
GetSecurityDescriptorGroup
RegisterServiceCtrlHandlerA

shell32

SHGetSpecialFolderPathW
ExtractIconA

oleaut32

VariantChangeType
LoadTypeLi
SafeArrayGetElement
SafeArrayRedim

version

VerQueryValueA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_i64tow
fputwc
_pctype
_wstrdate
_stricoll
_wputenv
exit
frexp
_chmod
sscanf
_mbsnbicmp
_open
wctomb
_getche
fwrite
atof
_mbscat
qsort
_strncoll
_ultow
_finite
_ui64tow
_snprintf
_chsize
realloc
_spawnv
_strupr
_exit
_XcptFilter

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 200KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fd3a27f0126337eaddb0f643ad8f6c60

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

version

msvcrt

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 200KB - Virtual size: 198KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 200KB - Virtual size: 198KB