4959de3404c176090b49bb1f2d4cc8ecf8600bfed1f56bb73e80d2f1857df8e4

Sharing

Copy URL Twitter E-mail

General

Target

4959de3404c176090b49bb1f2d4cc8ecf8600bfed1f56bb73e80d2f1857df8e4
Size

39KB
MD5

fdc6dc235a03b11a4fa356199206bed1
SHA1

18978ad720a1104661e6c924caa2abf8c477d541
SHA256

4959de3404c176090b49bb1f2d4cc8ecf8600bfed1f56bb73e80d2f1857df8e4
SHA512

8df1dfc5406c8c126228a7cd1bc39b1475335b3ffdbd171ca5e06ac9dd6be0097b8dc426c8427c250f3003ecc83142104a32845c3c546e1f2354f257764ffdbe
SSDEEP

192:3MDevcVv8foxDdvMDJfalNNfHhCI5mqV2FiQ2oE7HHodLPy5plwfRvhSdg68ZYT:cCcR8zFfalNNPhX/okIdWifRvhSdLvT

Score

N/A

Malware Config

Signatures

Files

4959de3404c176090b49bb1f2d4cc8ecf8600bfed1f56bb73e80d2f1857df8e4
.exe windows x86

484887e88e46770a0e6848c5de3eceb0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
CancelTimerQueueTimer
CopyFileW
CreateEventA
CreateThread
FatalAppExitA
FileTimeToLocalFileTime
FindNextVolumeA
GetCommConfig
GetCommProperties
GetConsoleAliasExesLengthA
GetFullPathNameA
GetPrivateProfileStructA
GetStringTypeW
GetThreadContext
GlobalDeleteAtom
LocalSize
GetStartupInfoW
MulDiv
OpenFile
ReadFileScatter
RtlUnwind
SearchPathA
SetConsoleTitleA
SetProcessShutdownParameters
SetVolumeMountPointA
SystemTimeToFileTime
WaitForDebugEvent
WriteConsoleInputW
_lread
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LockResource
ExitProcess
IsDebuggerPresent

user32

CreateIcon
CreateIconIndirect
CreateWindowStationW
DdeCmpStringHandles
DdeCreateStringHandleA
DdeGetData
DdeInitializeA
DdeKeepStringHandle
DefFrameProcW
CharUpperBuffA
EndDialog
EndMenu
FreeDDElParam
GetDCEx
GetDlgItemTextW
GetDoubleClickTime
GetMenuBarInfo
GetMenuItemInfoA
GetPropW
GetSubMenu
IMPGetIMEA
IMPSetIMEW
ImpersonateDdeClientWindow
InflateRect
InsertMenuItemW
InvalidateRgn
LoadAcceleratorsW
LockWorkStation
MenuItemFromPoint
MessageBoxIndirectA
OpenClipboard
PackDDElParam
PeekMessageA
RealGetWindowClassW
RegisterClassW
RegisterClipboardFormatA
ReleaseDC
RemovePropA
ScrollWindowEx
SendNotifyMessageW
SetCaretPos
SetClassWord
SetSysColors
SetTimer
SwapMouseButton
TabbedTextOutA
ToAsciiEx
UnpackDDElParam
UpdateWindow
WindowFromPoint
CharPrevA
CharNextA
CallWindowProcA
BroadcastSystemMessageA
AllowSetForegroundWindow
AdjustWindowRectEx
DlgDirListA

advapi32

RegOpenKeyW

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text6
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

awtwa1
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

awtwa2
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.awtwa3
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.awtwa4
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.awtwa5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.awtwa6
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

484887e88e46770a0e6848c5de3eceb0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 7KB - Virtual size: 6KB

.text6 Size: 8KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 44KB

awtwa1 Size: 1024B - Virtual size: 1000B

awtwa2 Size: 4KB - Virtual size: 3KB

.awtwa3 Size: 4KB - Virtual size: 3KB

.awtwa4 Size: 4KB - Virtual size: 3KB

.awtwa5 Size: 4KB - Virtual size: 3KB

.awtwa6 Size: 4KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 16B

.text
Size: 7KB - Virtual size: 6KB

.text6
Size: 8KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 44KB

awtwa1
Size: 1024B - Virtual size: 1000B

awtwa2
Size: 4KB - Virtual size: 3KB

.awtwa3
Size: 4KB - Virtual size: 3KB

.awtwa4
Size: 4KB - Virtual size: 3KB

.awtwa5
Size: 4KB - Virtual size: 3KB

.awtwa6
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 16B