ee171105d8bf5592852ddb9922847c393d919434ade615de3c3f7ff9f7c0d59a

Sharing

Copy URL Twitter E-mail

General

Target

ee171105d8bf5592852ddb9922847c393d919434ade615de3c3f7ff9f7c0d59a
Size

556KB
MD5

e223fc57eacdd0d2a39a0dd24dadbb60
SHA1

4df608a5057308b3411f542cf42c6ef162db357c
SHA256

ee171105d8bf5592852ddb9922847c393d919434ade615de3c3f7ff9f7c0d59a
SHA512

d00f3cd58871e3d35902c317deeed0aa41f5423919753072969a23ef3b92c590b6cb632c48d7a7f7fecc2e85c9d4ded4252dccbc76fee39d15d33d3e46c49691
SSDEEP

12288:6dVsIjYIHaLQpUDi7eVAEpg78rUGUDJ01Uphmb4xPNZPLT05FEZQkw:6dVmI6QK1/U1jhmkxlZKF8w

Score

N/A

Malware Config

Signatures

Files

ee171105d8bf5592852ddb9922847c393d919434ade615de3c3f7ff9f7c0d59a
.exe windows x86

db387e209346afb86811e608d3cbdbd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Remove
CreateMappedBitmap
DestroyPropertySheetPage
CreateToolbar
CreateToolbarEx
ImageList_DragShowNolock
ImageList_AddIcon
CreateStatusWindow
InitCommonControlsEx
ImageList_Merge
ImageList_Read
ImageList_GetDragImage

kernel32

TerminateProcess
ReadConsoleOutputCharacterA
VirtualAlloc
GetEnvironmentStringsW
MultiByteToWideChar
GetCurrentProcess
CompareStringW
InterlockedDecrement
InterlockedExchange
GetModuleFileNameA
GetSystemDirectoryA
WriteConsoleInputW
GetVolumeInformationA
GetCurrentThreadId
SetTimeZoneInformation
AllocConsole
GlobalUnfix
DeleteCriticalSection
ExitThread
LCMapStringW
CloseHandle
GetTickCount
DeleteAtom
GetLocalTime
GetProcessHeap
RtlUnwind
SetLastError
EnumDateFormatsA
GetProcessHeaps
CreateMutexA
OpenMutexA
GetStdHandle
FindFirstFileExA
EnterCriticalSection
VirtualQuery
WaitCommEvent
VirtualFree
HeapReAlloc
GetVersion
SetConsoleTitleA
ReadFile
GetEnvironmentStrings
CreateWaitableTimerW
FreeLibrary
GetPrivateProfileSectionA
ReadConsoleW
TlsSetValue
IsBadWritePtr
WriteConsoleOutputAttribute
HeapAlloc
SetWaitableTimer
GetStartupInfoA
TlsGetValue
UnhandledExceptionFilter
CreateEventW
SuspendThread
FlushFileBuffers
SetStdHandle
FreeEnvironmentStringsW
GetModuleHandleA
SetEnvironmentVariableA
GetProcAddress
CompareStringA
QueryPerformanceCounter
SetHandleCount
SetSystemTime
TlsFree
HeapCreate
GetUserDefaultLangID
SetCurrentDirectoryW
lstrcpynW
GetOEMCP
GetStringTypeA
FreeEnvironmentStringsA
TlsAlloc
FoldStringA
GetCurrentProcessId
MoveFileExW
OpenFileMappingA
GetACP
Sleep
GetCommandLineA
WriteFile
GetSystemTimeAsFileTime
ExitProcess
GetCPInfo
SetFilePointer
WideCharToMultiByte
HeapDestroy
GetStringTypeW
GetTimeZoneInformation
LeaveCriticalSection
GetShortPathNameA
GetCurrentThread
GetLastError
GetSystemTime
IsDebuggerPresent
InterlockedIncrement
HeapFree
LoadLibraryA
LCMapStringA
InitializeCriticalSection
SetCriticalSectionSpinCount
GetFileType
GetWindowsDirectoryA
GlobalGetAtomNameA
FindFirstFileA
WritePrivateProfileStringW
GetDriveTypeA
ReadFileEx
SystemTimeToFileTime
WritePrivateProfileStringA

user32

GetThreadDesktop
CreateDesktopW
DefWindowProcW
ToAsciiEx
SetDeskWallpaper
RegisterClassExA
CreateMenu
ReuseDDElParam
IsCharLowerA
PostMessageW
DdeCmpStringHandles
SetWindowWord
TranslateAcceleratorA
LoadKeyboardLayoutW
IsDlgButtonChecked
RegisterWindowMessageW
CreateWindowExW
MapVirtualKeyW
GetClipboardFormatNameW
GetCursorInfo
IsRectEmpty
InsertMenuA
ShowWindow
DdeQueryStringW
LoadMenuIndirectA
CallWindowProcA
EnumDisplaySettingsExA
GetMenuStringA
RegisterClassA
GetKeyboardLayout
CharLowerBuffA
SwitchDesktop
EnumDisplaySettingsW
SetClassLongW
OpenWindowStationA
VkKeyScanExW
MessageBoxW
SetMenuItemBitmaps
ValidateRect
SetLastErrorEx
DestroyWindow
GetWindowLongA

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

db387e209346afb86811e608d3cbdbd4

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 248KB - Virtual size: 246KB

.data Size: 112KB - Virtual size: 120KB

.rsrc Size: 44KB - Virtual size: 40KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 248KB - Virtual size: 246KB

.data
Size: 112KB - Virtual size: 120KB

.rsrc
Size: 44KB - Virtual size: 40KB