e5b5062e453eccd7e46e5884f6f10a26c0214d8d032631b542009d06b84cfb38

Sharing

Copy URL

Twitter E-mail

General

Target

e5b5062e453eccd7e46e5884f6f10a26c0214d8d032631b542009d06b84cfb38
Size

173KB
MD5

17ea31f59b12985dcb26f6ae6fbed7fb
SHA1

532f83e0a93f8af368da32d08d54b6452e13c107
SHA256

e5b5062e453eccd7e46e5884f6f10a26c0214d8d032631b542009d06b84cfb38
SHA512

1a4273c8376c4cc7dd2f0eeb97098fe8bf1451eab9de6bbf62d73881885dcda69bb25617543e98cf865414efa00307877cca60b3da698fee7788d94d14f947b9
SSDEEP

3072:3+Fv3GLUtN3kO4AyEymgAeB86rbmkDC8Z0kdBLcqMpWm:3svWQtN3sDi6rbmtq06L9I

Score

N/A

Malware Config

Signatures

Files

e5b5062e453eccd7e46e5884f6f10a26c0214d8d032631b542009d06b84cfb38
.exe windows x86

364eb8b136be2a93c105acad4c2d307e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
EndPaint
DrawTextA
FillRect
GetClientRect
EndDialog
ScreenToClient
ShowWindow
EnableMenuItem
BeginPaint

shell32

SHGetSpecialFolderLocation
SHFileOperationA
ShellExecuteA
SHGetFileInfoA
SHBrowseForFolderA
SHGetPathFromIDListA

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

advapi32

RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegCreateKeyExA

gdi32

SetTextColor
SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SelectObject

opengl32

glVertex2dv
glGetTexEnvfv
glVertex3d
glColor3uiv
glTexParameteri
glTexCoord1sv
glIndexf

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Create

kernel32

HeapReAlloc
GetConsoleCP
GetConsoleMode
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
HeapAlloc
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapSize
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCurrentProcessId
HeapFree
SetStdHandle
GetLastError
UnregisterWait
SetFilePointer
GetDefaultCommConfigW
GlobalHandle
SetCommBreak
EraseTape
CloseHandle
CreateFileA
GetFileType
GetFileSize
GetStdHandle
RaiseException
ReadFile
RtlUnwind
SetEndOfFile
UnhandledExceptionFilter
WriteFile
CompareStringA
ExitProcess
FindClose
FindFirstFileA
FreeLibrary
GetCommandLineA
GetCurrentDirectoryA
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetThreadLocale
LoadLibraryExA
lstrcpynA
lstrlenA
MultiByteToWideChar
SetCurrentDirectoryA
WideCharToMultiByte
VirtualQuery
GetCurrentThreadId
QueryPerformanceCounter
GetTickCount
VirtualAlloc
VirtualFree
Sleep
GetACP
GetSystemTimeAsFileTime
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetOEMCP
IsValidCodePage
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
DeleteCriticalSection
HeapCreate

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

364eb8b136be2a93c105acad4c2d307e

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

opengl32

comctl32

kernel32

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 15KB - Virtual size: 15KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 95KB - Virtual size: 94KB

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 15KB - Virtual size: 15KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 95KB - Virtual size: 94KB