b2a7c3243ea5c1f66fa4858b6a76d417815720bc38a0e76b7b36e7ecfb04f72f

Sharing

Copy URL Twitter E-mail

General

Target

b2a7c3243ea5c1f66fa4858b6a76d417815720bc38a0e76b7b36e7ecfb04f72f
Size

127KB
MD5

3aaee6a175c0c35ab913574a7ef26d10
SHA1

b6bd1611061a0d752c68b50f4ce1725b101dae83
SHA256

b2a7c3243ea5c1f66fa4858b6a76d417815720bc38a0e76b7b36e7ecfb04f72f
SHA512

8b3337927102573c3dc174a7a9e6efad18f4cbf5e22647519aa6b82e5f9fe9fa62d5b0dec033a844899115d9ff2bb724c4bfa19ca07bd1876801af0cc76c40a5
SSDEEP

3072:pUbCFCr1Y0jhxBo1Lk/GqIwHun7/3TDVe++M7x4Hg:pgWChY0Fg1KGqIwY/3TDVeKxyg

Score

N/A

Malware Config

Signatures

Files

b2a7c3243ea5c1f66fa4858b6a76d417815720bc38a0e76b7b36e7ecfb04f72f
.exe windows x86

bb1ad2cb25a0899a942278b85ce75c6c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEvent
SetUnhandledExceptionFilter
Sleep
OpenProcess
UnhandledExceptionFilter
WideCharToMultiByte
lstrcatA
lstrcpyA
lstrcpynA
lstrlenA
OpenEventA
MultiByteToWideChar
LoadLibraryExA
InterlockedIncrement
InterlockedDecrement
GetVersionExA
GetTickCount
GetSystemTimeAsFileTime
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetComputerNameA
FreeLibrary
CreateProcessA
CreateEventA
CompareStringA
CloseHandle
AddAtomA
CreateFileA
VirtualAlloc
GetProcessHeap
GetStartupInfoW
TerminateProcess
GetOEMCP

user32

LoadIconW
LoadIconA

gdi32

SetRectRgn
SetPixel
SetBkColor
SelectObject
PatBlt
MoveToEx
LineTo
GetTextMetricsW
GetTextExtentPoint32W
GetPixel
GetDeviceCaps
DeleteObject
SetTextColor
CreateSolidBrush
CreateRectRgn
CreatePen
CreateICW
CreateFontIndirectW
CreateCompatibleDC
CreateCompatibleBitmap
CombineRgn
BitBlt
GetStockObject
TextOutW
DeleteDC
StretchBlt

advapi32

RegOpenKeyExA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1024B - Virtual size: 521B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb1ad2cb25a0899a942278b85ce75c6c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.text2 Size: 512B - Virtual size: 100B

.data Size: 117KB - Virtual size: 116KB

.text Size: 1024B - Virtual size: 521B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 4KB

.text2
Size: 512B - Virtual size: 100B

.data
Size: 117KB - Virtual size: 116KB

.text
Size: 1024B - Virtual size: 521B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB