e6ca18c0586bd319562330f823f191205225aec236cf88bd3efce4e945142556

Sharing

Copy URL Twitter E-mail

General

Target

e6ca18c0586bd319562330f823f191205225aec236cf88bd3efce4e945142556
Size

368KB
MD5

98e06cee5b968055152b26ed977a664c
SHA1

4e403f19eb800af0ec503e88d3405421b7e7dd9c
SHA256

e6ca18c0586bd319562330f823f191205225aec236cf88bd3efce4e945142556
SHA512

59cf37686c1e15008575a4483636805f5a059dbed844e77869c2d835d7387f35a6654f34d30177e7dd0f5df38c4fc0ce6f1d8f48df3789da6b8e910937e2a9d7
SSDEEP

6144:Y+3ZyRDceFCr+78Cj4R3C8juVnnucKZazuUCGIaH3K9H:Y+3QRDcew+7FWyDcGx3K9H

Score

N/A

Malware Config

Signatures

Files

e6ca18c0586bd319562330f823f191205225aec236cf88bd3efce4e945142556
.exe windows x86

9ca139adc12bf61d3bb4c5be949c5e23

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_SYSTEM

Imports

kernel32

EnumDateFormatsA
CreateToolhelp32Snapshot
GetCurrentThreadId
GetCurrentProcessId
CloseHandle
RaiseException
SetFilePointer
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
IsProcessorFeaturePresent
RtlUnwind
GetStringTypeW
LoadLibraryA
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
IsValidCodePage
HeapAlloc
GetOEMCP
GetACP
MultiByteToWideChar
WriteFile
HeapCreate
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
ExitProcess
GetProcAddress
GetLastError
SetConsoleTitleA
Thread32Next
Sleep
Thread32First
GetConsoleTitleA
LoadLibraryW
GetTickCount
GetModuleHandleW
InterlockedDecrement
InterlockedIncrement
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsBadReadPtr
CreateFileW
HeapValidate
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
EncodePointer
DecodePointer
IsDebuggerPresent
FreeLibrary
GetCPInfo
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess

user32

LoadImageA
RegisterClassA
EnumDisplayDevicesA
DestroyIcon
LoadCursorA
UpdateWindow
GetWindow
FindWindowW
ToAsciiEx
ClientToScreen
SetCursor
GetClassNameA
GetWindowRect
InsertMenuItemA
RegisterClassExA
TrackPopupMenu
GetWindowDC
GetKeyState
GetFocus
AttachThreadInput
LoadIconA
IsWindowEnabled
wsprintfA
CreatePopupMenu
GetClientRect
SendMessageA
GetKeyboardState
OffsetRect
GetWindowTextA
GetKeyboardLayout
MapVirtualKeyA
CreateWindowExA
ReleaseDC
DefWindowProcA
GetDesktopWindow
GetCursorPos
GetMenuStringA
ShowWindow
FindWindowA

gdi32

GetDeviceCaps
ExcludeClipRect
CreateDCA
CombineRgn
CreateRectRgn
SetPixelFormat
DeleteDC

shell32

SHGetFileInfoA
DragQueryFileA

ole32

CoUninitialize
CoFileTimeNow
CreatePointerMoniker
CoInitialize
CoCreateInstance

oleaut32

SysAllocString

comctl32

ImageList_ReplaceIcon

uxtheme

DrawThemeBackground

Sections

.text
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.utext
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ca139adc12bf61d3bb4c5be949c5e23

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

oleaut32

comctl32

uxtheme

Sections

.text Size: 120KB - Virtual size: 119KB

.rdata Size: 40KB - Virtual size: 40KB

.data Size: 14KB - Virtual size: 21KB

.utext Size: 130KB - Virtual size: 130KB

.rsrc Size: 48KB - Virtual size: 48KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 120KB - Virtual size: 119KB

.rdata
Size: 40KB - Virtual size: 40KB

.data
Size: 14KB - Virtual size: 21KB

.utext
Size: 130KB - Virtual size: 130KB

.rsrc
Size: 48KB - Virtual size: 48KB

.reloc
Size: 13KB - Virtual size: 13KB