532f5ea396112b426397df75dc69613ab2c6cd02a5ab10334739305390da7219

Sharing

Copy URL Twitter E-mail

General

Target

532f5ea396112b426397df75dc69613ab2c6cd02a5ab10334739305390da7219
Size

168KB
MD5

94d2839681ed44f98916cf84ee975c7c
SHA1

e739f03618d1d18e5bc265e91af66b49269c5afa
SHA256

532f5ea396112b426397df75dc69613ab2c6cd02a5ab10334739305390da7219
SHA512

2d0c536b4c78a794647fa3b63c4559852e089980961a7687d541ca80e813a818760151391d7cb55280183697e797a97c23b53a03b123b5d5743a0c730870eea5
SSDEEP

3072:LfsrHcz/Q59PuFOiRaFFvCBnMfkNugKPeZrB9:LK8z/QPuF2vCBMfTerv

Score

N/A

Malware Config

Signatures

Files

532f5ea396112b426397df75dc69613ab2c6cd02a5ab10334739305390da7219
.exe windows x86

086ecd48bb9326a1a4e2e070c4b155fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
LocalAlloc
FreeEnvironmentStringsA
Module32First
ReadFile
GetConsoleCP
GetExitCodeThread
EnterCriticalSection
LoadLibraryW
VirtualQueryEx
GetEnvironmentStrings
SetHandleCount
Sleep
lstrlenA
GetModuleFileNameA
GlobalAlloc
SetEvent
lstrcpynA
ExitThread
LeaveCriticalSection
SetProcessWorkingSetSize
HeapFree
GetSystemTimeAsFileTime
LockResource
SetErrorMode
DeviceIoControl
GetStartupInfoA
GetConsoleMode
ExpandEnvironmentStringsA
GetVersionExA
CreateEventA
FindResourceA
FindClose
SetFilePointer
GetSystemInfo
CloseHandle
GetComputerNameW
SetLastError
GetCurrentProcess
LocalFree
QueryPerformanceCounter
VirtualAlloc
IsDebuggerPresent
lstrcmpiA
GetDriveTypeA
LoadResource
FindFirstFileA
GetModuleHandleA
SetEndOfFile
GetStringTypeW
GetVersion
MultiByteToWideChar
lstrcmpA
CreateFileA
TerminateThread
DuplicateHandle

user32

InflateRect
GetWindowRect
ClientToScreen
EndPaint
GetKeyState
SetClassLongA
ScrollWindowEx
GetMenuItemID
SetCursor
DeferWindowPos
SendMessageA
SetWindowLongA
PeekMessageA
GetWindowThreadProcessId
GetWindow
WindowFromPoint
GetDC
GetWindowLongA
RemoveMenu
DefFrameProcA
GetPropA
GetMenu
SetWindowTextA
GetWindowTextA
RegisterClassExA
GetSysColor
LoadCursorA
IsZoomed
RegisterWindowMessageA
GetMessageA
GetClassLongA
LoadMenuA
SetCapture
TranslateMessage
DrawMenuBar
SetDlgItemTextA
TrackPopupMenuEx
CheckDlgButton
SetPropA
DefDlgProcA
BeginPaint

msvcrt

_initterm
_except_handler3
__setusermatherr
__getmainargs
_acmdln
_XcptFilter
_adjust_fdiv
_exit
__set_app_type
__p__commode
exit
__p__fmode
_controlfp
memcpy

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

086ecd48bb9326a1a4e2e070c4b155fa

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 25KB - Virtual size: 25KB

.rdata Size: 99KB - Virtual size: 98KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 512B - Virtual size: 164B

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 99KB - Virtual size: 98KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 512B - Virtual size: 164B