e0a485346a7f2b08a430407c48dcf1a34c8d9c2da0d6b7d418443958b660b9b7

Sharing

Copy URL Twitter E-mail

General

Target

e0a485346a7f2b08a430407c48dcf1a34c8d9c2da0d6b7d418443958b660b9b7
Size

580KB
MD5

7c2b0f882c1ee781559395c1172062f6
SHA1

e78bd41bd8af65ee1db06933b386af2c68847fef
SHA256

e0a485346a7f2b08a430407c48dcf1a34c8d9c2da0d6b7d418443958b660b9b7
SHA512

99d2d1337fbf781ebc44391faba77c2ca0495bb471a5c3c2e97832161dd270436616ae56ca924f65953040ae044d1264d9573decd0eeffb2b1fc5113b884b7de
SSDEEP

12288:TrWdG2hvP82w186k98imlevAEVh6KojXLmbkk+Hz7RlMhxLNlpm:TrehvP8256kNuevAw3bkTSp

Score

N/A

Malware Config

Signatures

Files

e0a485346a7f2b08a430407c48dcf1a34c8d9c2da0d6b7d418443958b660b9b7
.exe windows x86

163f4fa18b9e8b07090adedbb7a4ff5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
CreateMutexA
GetVersion
GetComputerNameW
QueryPerformanceCounter
SetLastError
LocalFlags
GetTimeZoneInformation
SetConsoleCtrlHandler
GlobalFindAtomA
GetLocaleInfoA
FreeLibrary
HeapReAlloc
OpenFile
CreateEventW
WriteProfileSectionW
VirtualQuery
GetCurrentThread
ExitThread
InterlockedIncrement
WriteFile
VirtualFree
SetHandleCount
GetConsoleMode
WriteConsoleA
ReadConsoleInputA
GetFileType
EnumDateFormatsExA
GlobalUnfix
GetOEMCP
TlsGetValue
InterlockedExchangeAdd
WritePrivateProfileStringA
SetStdHandle
GetCurrentProcessId
GlobalFindAtomW
SetFilePointer
FillConsoleOutputAttribute
IsBadReadPtr
GlobalReAlloc
HeapFree
VirtualLock
CreateFileA
ExitProcess
FreeEnvironmentStringsW
CompareStringW
MapViewOfFileEx
MoveFileExA
LocalSize
IsBadWritePtr
MultiByteToWideChar
CreateMutexW
GetModuleHandleW
CloseHandle
InitializeCriticalSection
GetProcessHeap
SetConsoleOutputCP
GetNumberFormatW
InterlockedDecrement
CreateFileW
CreatePipe
lstrcpyW
GetLogicalDriveStringsA
GetConsoleOutputCP
LCMapStringA
SetUnhandledExceptionFilter
GetCurrentDirectoryA
ReadFile
EnumTimeFormatsW
GetProcAddress
GetModuleFileNameW
TransactNamedPipe
LCMapStringW
GetCPInfo
GetSystemTimeAdjustment
DeleteFileW
GetConsoleCursorInfo
GetCurrentProcess
HeapDestroy
FreeEnvironmentStringsA
GetCommandLineA
GetStartupInfoA
RtlUnwind
GetDateFormatA
TlsFree
SetVolumeLabelW
Sleep
LeaveCriticalSection
GetStringTypeW
GetSystemTimeAsFileTime
GetFileAttributesA
GetPrivateProfileSectionA
IsValidCodePage
GetDateFormatW
FindFirstFileExA
TlsSetValue
GetStringTypeA
GetTempFileNameA
GetThreadPriorityBoost
GetTimeFormatA
HeapCreate
DeleteCriticalSection
InterlockedExchange
GetPrivateProfileSectionW
GetLocaleInfoW
GetACP
GetLastError
GetEnvironmentStrings
FlushFileBuffers
GetStdHandle
LoadLibraryA
IsDebuggerPresent
lstrcmpW
GetUserDefaultLCID
EnterCriticalSection
IsValidLocale
GetConsoleCP
GetTickCount
GetCurrentThreadId
VirtualAlloc
HeapAlloc
WriteConsoleW
WriteProfileStringA
EnumSystemLocalesA
CompareStringA
UnhandledExceptionFilter
GetModuleHandleA
InitializeCriticalSectionAndSpinCount
GetThreadContext
GlobalSize
CreateDirectoryExA
SetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentVariableA
OpenMutexA
WideCharToMultiByte
TlsAlloc
HeapSize
VirtualAllocEx
WriteConsoleOutputAttribute
TerminateProcess
GetModuleFileNameA
GetLogicalDrives

comctl32

CreatePropertySheetPage
InitCommonControlsEx
CreatePropertySheetPageA

comdlg32

ChooseColorA
GetSaveFileNameA
ChooseFontA

user32

LoadImageW
SetParent
GetSysColor
ShowWindow
CallMsgFilter
UnregisterHotKey
RegisterClassA
GetMessageTime
SendMessageTimeoutA
CascadeChildWindows
DestroyWindow
RegisterClassExA
DefWindowProcW
SetShellWindow
IsCharUpperA
ReleaseCapture
GetClassLongW
PeekMessageW
DdeGetLastError
UnregisterDeviceNotification
CreatePopupMenu
CreateWindowExW
SetSystemCursor
SendIMEMessageExA
GetUserObjectSecurity
EnumChildWindows
MessageBoxW
GetAsyncKeyState
DefWindowProcA
OemKeyScan
FlashWindow
DdeGetData
SetUserObjectInformationW

Sections

.text
Size: 192KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

163f4fa18b9e8b07090adedbb7a4ff5a

Headers

File Characteristics

Imports

kernel32

comctl32

comdlg32

user32

Sections

.text Size: 192KB - Virtual size: 189KB

.rdata Size: 248KB - Virtual size: 245KB

.data Size: 116KB - Virtual size: 121KB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 192KB - Virtual size: 189KB

.rdata
Size: 248KB - Virtual size: 245KB

.data
Size: 116KB - Virtual size: 121KB

.rsrc
Size: 20KB - Virtual size: 18KB