ebd6c0693d9142c5aaba2343a0bac5cfb26bab450ab4409da38da0aaf38edc67

Sharing

Copy URL Twitter E-mail

General

Target

ebd6c0693d9142c5aaba2343a0bac5cfb26bab450ab4409da38da0aaf38edc67
Size

700KB
MD5

079b1e1cbfbbe993b302f4859e20a8c5
SHA1

fcf38e76e6fede18a506424a765b53c405900b90
SHA256

ebd6c0693d9142c5aaba2343a0bac5cfb26bab450ab4409da38da0aaf38edc67
SHA512

02b939d1d51bf3f2a1c3c5cb05f2f2c725cddcfd4a5209376f7af2a0cb0b606254700d0e7bfce5d11600eef7d7dadb891f4765a95e76753ac4f04e5c312abade
SSDEEP

12288:TPaPUnR65Sa44S5zJKWdGGIBOX7LzuWLGAOB0BIbdwVrGXOgBgNjb:TPamUOKMGdBu3sAA+gdaKXBM

Score

N/A

Malware Config

Signatures

Files

ebd6c0693d9142c5aaba2343a0bac5cfb26bab450ab4409da38da0aaf38edc67
.exe windows x86

ecb8847541f7b581d53ea327ac518a67

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadExecutionState
LockFile
GetDevicePowerState
GlobalFree
InterlockedCompareExchange
GetSystemDefaultUILanguage
GetFileAttributesExA
GetPrivateProfileSectionA
SetCalendarInfoA
GetLogicalDriveStringsA
GetCurrentThreadId
SetCalendarInfoW
GetCurrencyFormatW
GlobalUnlock
DeleteVolumeMountPointW
GlobalLock
GetCompressedFileSizeA
CreateMailslotW
BackupSeek
CreatePipe
Process32NextW
RtlZeroMemory
FreeUserPhysicalPages
CancelWaitableTimer
DeleteTimerQueueEx
GetSystemDefaultLangID
SetThreadIdealProcessor
SetThreadPriority
OpenFileMappingW
IsValidLocale
WaitForSingleObjectEx
GetProcessAffinityMask
GetProcessPriorityBoost
GetCPInfo
LocalCompact
HeapAlloc
EnumCalendarInfoW
SetCurrentDirectoryA
SetTimerQueueTimer
GetThreadLocale
WritePrivateProfileSectionA
VerifyVersionInfoW
MultiByteToWideChar
CreateMutexW
RtlUnwind
GetProcessVersion
GetFileType
IsBadHugeWritePtr
lstrlenW
SetUnhandledExceptionFilter
GetOEMCP
ReplaceFileW
GetSystemDefaultLCID
OpenSemaphoreW

user32

EnumDisplayMonitors
CopyAcceleratorTableW
LoadBitmapA
CheckMenuItem
DlgDirListComboBoxA
OpenInputDesktop
SubtractRect
CharPrevExA
DestroyAcceleratorTable
PostThreadMessageW
GetClipCursor
ValidateRgn
CharLowerW
TranslateMessage
LookupIconIdFromDirectoryEx
SendMessageA
CharToOemW
GetKeyNameTextA
DdeConnectList
InsertMenuA
DdeAbandonTransaction
GetDlgItem
SetWindowsHookW
GetLastActivePopup
IsZoomed
DialogBoxIndirectParamA
GetWindowInfo
DdeQueryNextServer
UnregisterDeviceNotification
CreateAcceleratorTableW
SetKeyboardState
GetSubMenu
ToUnicode
ToAsciiEx
CharPrevA
InvalidateRect
MonitorFromPoint
UnhookWinEvent
GetCaretBlinkTime
LoadCursorFromFileA
SetSysColors
GetMessageExtraInfo
HiliteMenuItem
SetDoubleClickTime
DdeUninitialize
SetDebugErrorLevel
DeferWindowPos
GetAsyncKeyState
SendNotifyMessageW
IsDialogMessageA
EmptyClipboard
CallMsgFilterA
DefFrameProcW
GetMenuInfo
OpenDesktopA
GetClassInfoExA
ScrollWindow
DdeInitializeA
SwitchDesktop
wvsprintfA
GetWindowRect
EnableWindow
UnregisterClassW
wvsprintfW
IsCharAlphaNumericW
GetKeyboardLayoutNameA
EnumDesktopsA
ExitWindowsEx
ReuseDDElParam
EnumPropsExA
FreeDDElParam
SetForegroundWindow
SetLastErrorEx
RegisterWindowMessageW
VkKeyScanA
MoveWindow
SetScrollPos
CreateIconFromResource
SetFocus
GetWindowLongW
RegisterWindowMessageA
DestroyIcon
VkKeyScanExW
SetCaretBlinkTime
GetDlgCtrlID
GetGUIThreadInfo
ArrangeIconicWindows
GetWindowModuleFileNameW
GetDlgItemInt
DefMDIChildProcW
DdeSetQualityOfService
CharNextExA
VkKeyScanW
OpenIcon
MessageBoxExW
IsClipboardFormatAvailable
MenuItemFromPoint
GetMenu
CharPrevW
GetMenuItemInfoW
BeginPaint
PostMessageW
DlgDirListA
SendMessageTimeoutA
GetKeyboardLayout
TrackPopupMenu
SetMessageQueue
GetMessagePos
RegisterShellHookWindow
GetWindowModuleFileNameA
GetThreadDesktop
SwitchToThisWindow
WindowFromDC
ActivateKeyboardLayout
EnumDesktopWindows
GetActiveWindow
FindWindowExA
GetMenuItemInfoA
GetMenuState
EnumClipboardFormats
LookupIconIdFromDirectory
MessageBoxIndirectW
FindWindowW
GetMenuItemCount
GetKeyboardLayoutNameW
SetDlgItemInt
DdeQueryStringA
CallWindowProcW
CharLowerBuffW
MapVirtualKeyA
GetClassLongA
SendMessageW
GetMenuContextHelpId
GetCursorPos

Sections

.text
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 254KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 195KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ecb8847541f7b581d53ea327ac518a67

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 240KB - Virtual size: 239KB

.data Size: 254KB - Virtual size: 1.4MB

.rdata Size: 5KB - Virtual size: 5KB

.rsrc Size: 195KB - Virtual size: 194KB

.reloc Size: 5KB - Virtual size: 8KB

.text
Size: 240KB - Virtual size: 239KB

.data
Size: 254KB - Virtual size: 1.4MB

.rdata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 195KB - Virtual size: 194KB

.reloc
Size: 5KB - Virtual size: 8KB