77e2cb4200277a34500f2afdc908187868dfc511497488fcdf8ec5af47dc15d0

Sharing

Copy URL Twitter E-mail

General

Target

77e2cb4200277a34500f2afdc908187868dfc511497488fcdf8ec5af47dc15d0
Size

172KB
MD5

c1cd590c14e2bd1a4ad4b23b0da4abc6
SHA1

5176290ebf5d9e07834c24376d0141577ca7864f
SHA256

77e2cb4200277a34500f2afdc908187868dfc511497488fcdf8ec5af47dc15d0
SHA512

865489f109c65cefc9186ab3807f03c694264106c8cc59650a0c7a0fde346f09fb0e89f7019f8f99b9d99cd7dfe9c5f9c47fd5eab5ca030c8b16097c3c44f7c0
SSDEEP

3072:iBL2MI6a/wFri8IhkxCLgzobfsA9/wKXKk/qfVtx7Nmf3xkI6E:iLbbvYkxygZ4Kk/qf3x7cv7

Score

N/A

Malware Config

Signatures

Files

77e2cb4200277a34500f2afdc908187868dfc511497488fcdf8ec5af47dc15d0
.exe windows x86

46f6386fdf52517fec0e0b3e9f258eb8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
VirtualAlloc
DeleteFileA
GetSystemInfo
SetFilePointerEx
GetThreadLocale
GetVersionExA
SetEndOfFile
lstrlenA
GetFileAttributesW
SleepEx
CreateFileA
ReadFileEx
ReadFile
InterlockedCompareExchange
CloseHandle
LoadResource
SetEvent
FlushFileBuffers
CreateThread
DeleteFileW
FindCloseChangeNotification
GetFileSize
GlobalFree
CreateEventA
GetFileSizeEx
GetModuleFileNameW
WaitForSingleObject
LocalFree
InterlockedExchange
FreeLibrary
LockResource
SetFilePointer
GlobalLock
FormatMessageW
CreateEventW
FindClose
TryEnterCriticalSection
LocalAlloc
WaitForMultipleObjectsEx
WaitForSingleObjectEx
InitializeCriticalSection
GlobalAlloc
RaiseException
CompareStringW
ReleaseMutex
FormatMessageA
WriteFileEx
SetStdHandle
lstrlenW
SetErrorMode
RegisterWaitForSingleObject
GetCurrentDirectoryA
ResetEvent
GetFileAttributesA
HeapDestroy
SizeofResource
GlobalUnlock
CreateFileW
CompareStringA
InterlockedExchangeAdd
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetStringTypeW
LoadLibraryA
GetProcAddress
IsBadWritePtr
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
FatalAppExitA
LeaveCriticalSection
EnterCriticalSection
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
GetCurrentThread
GetLastError
TlsGetValue
SetLastError
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree

user32

AllowSetForegroundWindow
CreateWindowExW
SetCapture
UnregisterClassA
GetSubMenu
PtInRect
GetMenuStringW
PostMessageW
ReleaseCapture
ClientToScreen
OffsetRect
DefWindowProcW
GetKeyState
DestroyMenu
DefWindowProcA
MessageBeep
SetMenuItemBitmaps
GetWindowWord
SetMenuItemInfoW
LoadCursorW
GetForegroundWindow
PostMessageA

msi

ord194

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46f6386fdf52517fec0e0b3e9f258eb8

Headers

File Characteristics

Imports

kernel32

user32

msi

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 136KB - Virtual size: 244KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 136KB - Virtual size: 244KB

.rsrc
Size: 4KB - Virtual size: 2KB