44488a2c7bf64df902e02aaf666dfd38e8069cc2f7be3ceadabe32112136c713

Sharing

Copy URL Twitter E-mail

General

Target

44488a2c7bf64df902e02aaf666dfd38e8069cc2f7be3ceadabe32112136c713
Size

244KB
MD5

8820d4a98b155b6378414dabc38fa013
SHA1

70bd18544963c49cf4d9f8e7c233382f1d133c6a
SHA256

44488a2c7bf64df902e02aaf666dfd38e8069cc2f7be3ceadabe32112136c713
SHA512

c1d09bc9645a189b82d45f147779ac91e80292a498628e63550bf97ad5643d51cc468925e0833bd0b4837b0c414f22928ef08f70ecf224d55cfe666c9e88803c
SSDEEP

6144:4RukcMnNcHHojpT0CdISoeDDzW3t7eho:4ozVHkpDxDfW3VP

Score

N/A

Malware Config

Signatures

Files

44488a2c7bf64df902e02aaf666dfd38e8069cc2f7be3ceadabe32112136c713
.exe windows x86

be9f195d739e50113781464dc6d72bfe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeZoneInformation
GetCurrentProcessId
HeapCreate
LCMapStringW
HeapFree
GetStringTypeA
WideCharToMultiByte
SetFilePointer
DeleteCriticalSection
OpenMutexW
GetEnvironmentStringsW
EnumCalendarInfoExW
GetEnvironmentStrings
WritePrivateProfileStructA
SetEnvironmentVariableA
RtlUnwind
GetLastError
TerminateProcess
CompareStringW
FreeEnvironmentStringsW
GetCurrentThreadId
WriteProfileSectionW
GetACP
LeaveCriticalSection
GetTickCount
GetProcAddress
GetCurrentProcess
GetCurrentThread
FindAtomA
IsBadWritePtr
InitializeCriticalSection
GetSystemDirectoryW
GetModuleFileNameA
FlushFileBuffers
GetSystemTimeAsFileTime
ReadFile
OpenMutexA
SetCurrentDirectoryA
GetSystemTime
VirtualAlloc
CreateWaitableTimerA
CreateMutexA
GetTimeFormatA
GlobalDeleteAtom
InterlockedDecrement
GetSystemDefaultLCID
TlsFree
GetLocalTime
GetCPInfo
HeapDestroy
VirtualQuery
UnhandledExceptionFilter
SetStdHandle
GlobalUnlock
GetVersion
InterlockedIncrement
CompareStringA
GetUserDefaultLangID
GetModuleHandleA
GetModuleFileNameW
GetStringTypeW
WaitForSingleObject
InterlockedExchange
GetFileType
MultiByteToWideChar
SetLastError
GetStdHandle
HeapReAlloc
WriteFile
FreeEnvironmentStringsA
CloseHandle
GetOEMCP
TlsGetValue
GetCommandLineA
LoadLibraryA
TlsSetValue
SetHandleCount
GetStartupInfoA
QueryPerformanceCounter
MoveFileExA
SetConsoleMode
GetFileAttributesW
ExitProcess
VirtualFree
HeapAlloc
TlsAlloc
LCMapStringA
EnterCriticalSection

user32

MessageBoxW
DefWindowProcA
LoadBitmapA
EnumPropsExA
CallWindowProcA
RegisterClassA
DefFrameProcA
ChangeDisplaySettingsA
DragDetect
DispatchMessageA
SetPropA
TranslateMessage
GetMenuStringA
CreateIconFromResourceEx
RegisterClassExA
CreateWindowExA
GetMessagePos
ShowWindow
CreateAcceleratorTableA
CharUpperA
SetCursor
DestroyWindow
CreateWindowStationA
SendNotifyMessageA
CreateDialogIndirectParamA

comctl32

ImageList_SetOverlayImage
ImageList_LoadImageA
ImageList_SetFlags
GetEffectiveClientRect
ImageList_LoadImageW
ImageList_Add
ImageList_Copy
ImageList_Remove
ImageList_DrawIndirect
ImageList_GetIcon
ImageList_DrawEx
InitCommonControlsEx
ImageList_Create
InitMUILanguage
ImageList_EndDrag
ImageList_Replace
CreatePropertySheetPageW
CreateToolbar
ImageList_ReplaceIcon
ImageList_GetIconSize
CreateUpDownControl
ImageList_BeginDrag
_TrackMouseEvent

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be9f195d739e50113781464dc6d72bfe

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 88KB - Virtual size: 104KB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 88KB - Virtual size: 104KB

.rsrc
Size: 20KB - Virtual size: 18KB