1092b6a123a365959254eea67320628d0bcb1ac5b9332cf8743c35573ae1635b

Sharing

Copy URL Twitter E-mail

General

Target

1092b6a123a365959254eea67320628d0bcb1ac5b9332cf8743c35573ae1635b
Size

169KB
MD5

85544ef9f62ce721712263e74ce1f9d2
SHA1

2f1c414dafa53ab4b33505ccf264481df61fb8ac
SHA256

1092b6a123a365959254eea67320628d0bcb1ac5b9332cf8743c35573ae1635b
SHA512

5fc64aa3980a04a109840aa9cb71fc1748f9919cc7968a12a2a075ebd89973a82c5037ebaee706efa11dc8cc50a81f2928b75bc8d756ae75fe6b0226da0fe467
SSDEEP

3072:GkQqltGuWocglW0T/T2qVDC23Ii8Dg5UhuWl3m04nlZ/LiGNVBXD+EvBixB:AqGuWocg5blv4iJ2UWl3GnltiiBXD+EA

Score

N/A

Malware Config

Signatures

Files

1092b6a123a365959254eea67320628d0bcb1ac5b9332cf8743c35573ae1635b
.exe windows x86

24ce7a2354c8f3ae24655a8c9369ff05

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
IsDebuggerPresent
GetCurrentThreadId
GetProcessAffinityMask
GetModuleHandleA
IsBadStringPtrW
SetUnhandledExceptionFilter
TlsSetValue
ReadFile
VirtualAlloc
ResumeThread
GetFileAttributesA
CreateProcessA
GlobalMemoryStatus
FreeEnvironmentStringsA
GetStartupInfoA
GetEnvironmentStrings
TlsFree
ResetEvent
GetModuleHandleW
GetCurrentDirectoryA
EnterCriticalSection
GetSystemDirectoryA
QueryPerformanceFrequency
GetEnvironmentVariableA
SetEnvironmentVariableA
HeapCreate
GetACP
IsBadStringPtrA
Module32First
lstrcmpiA
MultiByteToWideChar
GetCPInfo
SetPriorityClass
GetCurrentProcess
GetStringTypeExW
CloseHandle
InitializeCriticalSection

user32

FindWindowExA
LoadStringA
GetWindowPlacement
RemoveMenu
DefDlgProcA
EndDialog
CallWindowProcA
GetScrollInfo
UnionRect
ScrollWindowEx
GetWindowLongA
InsertMenuA
SendMessageA
CheckMenuItem
GetDlgItemTextA
DialogBoxParamA
IsZoomed
SetScrollInfo
GetDesktopWindow
TrackPopupMenuEx
MsgWaitForMultipleObjects
OpenClipboard
IntersectRect
CreateMenu
GetMessageA
GetWindowThreadProcessId
CopyRect
DefFrameProcA
CloseClipboard
GetMenuItemID
OffsetRect
PeekMessageA
RegisterClassA
MessageBoxA
DeleteMenu
RegisterClassExA
SetWindowTextA
AppendMenuA
FrameRect
CreateDialogParamA
LoadIconA

msvcrt

__p__fmode
_XcptFilter
_exit
_initterm
_except_handler3
__set_app_type
__p__commode
__getmainargs
_controlfp
_acmdln
exit
__setusermatherr
_adjust_fdiv
memcpy

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24ce7a2354c8f3ae24655a8c9369ff05

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 6KB - Virtual size: 184KB

.rsrc Size: 131KB - Virtual size: 130KB

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 6KB - Virtual size: 184KB

.rsrc
Size: 131KB - Virtual size: 130KB