a50c0afd4de2059c569fefbec4062ce53c261c176563f572be056523df7e98e9

Sharing

Copy URL Twitter E-mail

General

Target

a50c0afd4de2059c569fefbec4062ce53c261c176563f572be056523df7e98e9
Size

169KB
MD5

8a5b6b49afdc363d4271a895b710c2cd
SHA1

12ac4f65eefd5cdf085ce7fd7e024fab10eb9f20
SHA256

a50c0afd4de2059c569fefbec4062ce53c261c176563f572be056523df7e98e9
SHA512

fc95c2db8d2ce65e9748838082da9c8d033039fc6d101301837a3dd2744276fef947dbbd1eced70f7826959eca6af96dd4981525e9f9fbc528fba4cf0f7f8051
SSDEEP

3072:a1wU2aHPFDkLqacavjSCK/TNMiIcNgrcloMT8X8qUWmM6DAO:ajPhOjSCK7Nsc6QnT9qLmMG

Score

N/A

Malware Config

Signatures

Files

a50c0afd4de2059c569fefbec4062ce53c261c176563f572be056523df7e98e9
.exe windows x86

0e323d6f8b14d6ca85e58503ec36a246

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsProcessorFeaturePresent
HeapReAlloc
GetStringTypeW
LCMapStringW
HeapSize
Sleep
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GlobalFree
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
EncodePointer
GlobalUnlock
MultiByteToWideChar
HeapCreate
LoadLibraryW
GlobalAlloc
GetProcessHeap
GetUserDefaultLCID
GlobalLock
ExitProcess
HeapAlloc
GetCurrentProcessId
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetLastError
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleW
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW

user32

ClientToScreen
DestroyWindow
GetMessageA
GetClassNameA
GetSystemMenu
GetWindowRect
TrackPopupMenu
GetWindowDC
GetSubMenu
GetMenuBarInfo
GetParent
LoadMenuA
LoadIconA
GetClipCursor
IsWindowEnabled
wsprintfA
GetClientRect
SendMessageA
PtInRect
GetDC
TranslateMessage
MessageBoxA
SetCursorPos
UnregisterClassA
GetWindowLongA
CreateWindowExA
ReleaseDC
EnableMenuItem
SetClassLongA
GetMenuState
GetDlgItem
DefWindowProcA
GetDesktopWindow
DispatchMessageA
CloseWindow
DialogBoxIndirectParamA
DestroyMenu
LoadCursorA
SetDlgItemTextA
GetWindowThreadProcessId
RegisterClassA
MoveWindow

gdi32

MoveToEx
SetBkColor
DeleteObject
SelectObject
Rectangle
SetTextAlign
GetStockObject
TextOutA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e323d6f8b14d6ca85e58503ec36a246

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 132KB - Virtual size: 135KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 132KB - Virtual size: 135KB

.rsrc
Size: 1KB - Virtual size: 1KB