c5c12f374c8ef80dc4087008a49667661a63e64134229223942a7d481c0a6f48

General

Target

c5c12f374c8ef80dc4087008a49667661a63e64134229223942a7d481c0a6f48
Size

125KB
MD5

44a063a386a97590d5e068bff16cf068
SHA1

65c68bbf78c93627f1e122626bda8e8c35706607
SHA256

c5c12f374c8ef80dc4087008a49667661a63e64134229223942a7d481c0a6f48
SHA512

2d44975ac31e6bf855b2a6d2599de0ab7b87fb3826206dd91e892f4e9af3a2e870c7d62b3420cdecfeb2b3dcf8554379631199a29be734de74727109b06ef886
SSDEEP

3072:kB2kvF51WLmfckTJYAGGXXQE5hcH9S+xra6CYzotxDT+:kB2kvFzWLmkE5hcD06CT33+

Score

N/A

Malware Config

Signatures

Files

c5c12f374c8ef80dc4087008a49667661a63e64134229223942a7d481c0a6f48
.exe windows x86

bb824f038ab27fa3db4cdf55cd1d4205

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAddAtomA
MulDiv
IsBadStringPtrW
LCMapStringA
CreateFileMappingA
SetEnvironmentVariableA
LoadResource
SetStdHandle
GetVersionExA
SetEvent
Sleep
PulseEvent
ExpandEnvironmentStringsA
GlobalLock
GetFileType
GetLocaleInfoW
EnterCriticalSection
SetFilePointer
GetProcAddress
GetModuleHandleW
GetStartupInfoA
CreateToolhelp32Snapshot
ResetEvent
SetThreadAffinityMask
LocalAlloc
LeaveCriticalSection
GlobalMemoryStatus
GetModuleHandleA
GetEnvironmentStringsW
DuplicateHandle
GetCurrentDirectoryA
lstrcatA
SetErrorMode
SetHandleCount
FreeLibrary
LocalFree
GlobalUnlock
FlushFileBuffers

user32

CreateWindowExA
TranslateAcceleratorA
ReleaseDC
DrawEdge
EnumWindows
PostQuitMessage
KillTimer
LoadStringA
CheckMenuRadioItem
DrawIconEx
GetSysColorBrush
DestroyWindow
SendMessageA
PostMessageA
SetWindowPlacement
WindowFromPoint
CheckRadioButton
DefMDIChildProcA
InflateRect
SetCapture
LoadAcceleratorsA
GetWindowLongA
EndPaint
SetScrollInfo
CreatePopupMenu
RegisterClassExA
SetClipboardData
DialogBoxParamA
InsertMenuA
UpdateWindow
UnionRect
SetDlgItemTextA
CheckDlgButton
SetWindowTextA
GetSubMenu
EnableMenuItem
BeginDeferWindowPos
wsprintfA
GetSystemMetrics

msvcrt

_XcptFilter
_acmdln
__p__commode
_initterm
_controlfp
__getmainargs
__p__fmode
__setusermatherr
_exit
__set_app_type
_adjust_fdiv
memcpy
exit
_except_handler3

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb824f038ab27fa3db4cdf55cd1d4205

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 5KB - Virtual size: 56KB

.rsrc Size: 92KB - Virtual size: 92KB

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 5KB - Virtual size: 56KB

.rsrc
Size: 92KB - Virtual size: 92KB