aa21149c51570fa936b3db3805c7652ae3ce484ae7a949a70e7a49ff0af853ad

Sharing

Copy URL Twitter E-mail

General

Target

aa21149c51570fa936b3db3805c7652ae3ce484ae7a949a70e7a49ff0af853ad
Size

335KB
MD5

58812df2503f00efa5cae6b252b1fd7b
SHA1

c8fb96bee0d21cbd9ec3251fe4c1d3029926fe3c
SHA256

aa21149c51570fa936b3db3805c7652ae3ce484ae7a949a70e7a49ff0af853ad
SHA512

7e6a053d59c2b2472ca955c594449b5cda9808b2e1057cd92c396543fbe58dc515d98b67d72cdb39a8bb8450fa7dfc6f7dd570b0c45df94c6e987c06d4430684
SSDEEP

6144:fX7I7DEWv7p8sYNzR5T2G7vZvtTx8hdSI:fE7DEWTh+zR5T2mvRtTx8hdS

Score

N/A

Malware Config

Signatures

Files

aa21149c51570fa936b3db3805c7652ae3ce484ae7a949a70e7a49ff0af853ad
.exe windows x86

cf87eba0b2d6e81cb995757175c00984

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GetTickCount
GetVersionExA
GetCommandLineW
GetProcAddress
GetModuleHandleA
HeapAlloc
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetLocaleInfoA
lstrcmpiA
HeapSize
RtlUnwind
GetCommandLineA
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
VirtualFree
HeapFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualAlloc
HeapReAlloc

user32

UpdateWindow
ShowWindow
RegisterClassExA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
DefWindowProcA
GetClientRect
EndPaint
EndDialog
LoadStringA
CreateWindowExA

gdi32

CreateBitmap
Rectangle

ole32

CoTaskMemAlloc
CoUninitialize

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf87eba0b2d6e81cb995757175c00984

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 5KB - Virtual size: 10KB

.rsrc Size: 295KB - Virtual size: 295KB

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 5KB - Virtual size: 10KB

.rsrc
Size: 295KB - Virtual size: 295KB