1e3b52b797b6b830260e0d96a8270264b84e5ce3eebe1cb09ee661b2cf3defdc

Sharing

Copy URL Twitter E-mail

General

Target

1e3b52b797b6b830260e0d96a8270264b84e5ce3eebe1cb09ee661b2cf3defdc
Size

243KB
MD5

aca411298692d5aad74a32f9a9f2948f
SHA1

e4c054d45f620029d83d643fcf1b42a7d124abc3
SHA256

1e3b52b797b6b830260e0d96a8270264b84e5ce3eebe1cb09ee661b2cf3defdc
SHA512

dcbc0dac2697e15b1be3e184712e01f59b9d20444f7ec9ef03b01c178befce434ed2aef6b3bee06bde1402a4223728dda94fa424124c2c17b8e54c78dd5f2758
SSDEEP

6144:XziceiUNKKkECWmOYkXR+uYCNg5IyYjgpgtxj:XziceiUNAI+RNYjSgt1

Score

N/A

Malware Config

Signatures

Files

1e3b52b797b6b830260e0d96a8270264b84e5ce3eebe1cb09ee661b2cf3defdc
.exe windows x86

d81504d2a570afb97b7faff3298dcddb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

Sleep
HeapFree
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
LoadLibraryW
RtlUnwind
SetStdHandle
WriteConsoleW
MultiByteToWideChar
LCMapStringW
GetStringTypeW
HeapReAlloc
HeapSize
CreateFileW
CloseHandle
FlushFileBuffers
LocalFree
GetLastError
HeapCreate
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent
GetCommandLineW
HeapAlloc
SetEvent
GetCurrentProcess
TerminateProcess
WaitForMultipleObjects
GetModuleHandleA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer

user32

EnumWindows
PeekMessageA
TranslateMessage
DispatchMessageA
ShowWindow
FillRect
SetFocus
GetWindowTextA
RegisterClassExA
LoadCursorA
LoadIconA
IsWindowVisible
GetClientRect
CopyImage
CreateWindowExA
LoadImageA
GetDialogBaseUnits
GetForegroundWindow
IsWindow
GetWindow
DestroyWindow
UpdateWindow
GetDC
InvalidateRect
CreatePopupMenu
AppendMenuA
GetWindowRect
TrackPopupMenu
SendMessageA
SetWindowTextA
KillTimer
ExitWindowsEx
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
LoadBitmapA

gdi32

SelectObject
CreateCompatibleDC
GetObjectA
BitBlt
DeleteDC
GetPixel
CreateRectRgn
CombineRgn
DeleteObject
CreateCompatibleBitmap
MoveToEx
CreateFontIndirectA
SetTextAlign
GetTextMetricsA
TextOutA
CreateSolidBrush
EndDoc
SetViewportOrgEx
GetStockObject
Rectangle

shell32

CommandLineToArgvW

ole32

OleGetClipboard
OleUninitialize
OleFlushClipboard
CoMarshalInterThreadInterfaceInStream
GetHGlobalFromStream
CoMarshalInterface
CreateStreamOnHGlobal
OleIsCurrentClipboard
OleSetClipboard
OleInitialize
CoInitializeEx
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc

netapi32

NetApiBufferFree
NetShareGetInfo
NetWkstaUserGetInfo

psapi

GetWsChanges

crypt32

CryptBinaryToStringA
CryptFindLocalizedName

shlwapi

StrDupA

comctl32

InitCommonControlsEx
CreateToolbarEx

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 121KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d81504d2a570afb97b7faff3298dcddb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

netapi32

psapi

crypt32

shlwapi

comctl32

Sections

.text Size: 62KB - Virtual size: 61KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 121KB - Virtual size: 128KB

.rsrc Size: 46KB - Virtual size: 46KB

.text
Size: 62KB - Virtual size: 61KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 121KB - Virtual size: 128KB

.rsrc
Size: 46KB - Virtual size: 46KB