a8b1c8f3efd2f783445b959f6f116a90dc1636eb2770dd4c31a10b97dfe2c8bb

Sharing

Copy URL Twitter E-mail

General

Target

a8b1c8f3efd2f783445b959f6f116a90dc1636eb2770dd4c31a10b97dfe2c8bb
Size

240KB
MD5

bd6143fc13387b969a64de99b5c543e2
SHA1

6e8a12c03e1025dc6532a02d3dae2972276eb6b8
SHA256

a8b1c8f3efd2f783445b959f6f116a90dc1636eb2770dd4c31a10b97dfe2c8bb
SHA512

3f5a34685b5a46228f81a8ec7044e419fb08acc42f3998ab5a093d45b977d32c89a8f12a5316762ae79890f7c956709759e5a710ff25d96cfd3b9507d2b8e5ec
SSDEEP

6144:CMdyq4cU8PqIMRT84NRkbp2cClw71zylV7hs:CEd4cVktfckc0eye

Score

N/A

Malware Config

Signatures

Files

a8b1c8f3efd2f783445b959f6f116a90dc1636eb2770dd4c31a10b97dfe2c8bb
.exe windows x86

a2f62b725a15664ca240530c65aa790a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadContext
DebugActiveProcess
ResumeThread
GetVersionExA
VirtualProtectEx
SuspendThread
TerminateProcess
GetExitCodeProcess
CreateProcessA
GetModuleFileNameA
WriteProcessMemory
GetStartupInfoA
DeleteFileA
Sleep
GetTempPathA
FindClose
FindNextFileA
FindFirstFileA
UnmapViewOfFile
FreeLibrary
CloseHandle
WaitForSingleObject
GetCurrentThread
GetShortPathNameA
LoadLibraryA
SetThreadContext
SetFileTime
CompareFileTime
GetFileTime
ReadFile
ReleaseMutex
MapViewOfFile
CreateFileMappingA
CreateMutexA
SetFilePointer
GetCurrentProcessId
SetLastError
SleepEx
CreateThread
WriteFile
GetDiskFreeSpaceA
GetTempFileNameA
CreateMailslotA
SetEnvironmentVariableA
GetCommandLineA
GetModuleHandleA
GetFileSize
GetProcAddress
SetPriorityClass
SetThreadPriority
GetCurrentProcess
ContinueDebugEvent
WaitForDebugEvent
ReadProcessMemory
CreateFileA
GetEnvironmentVariableA
FlushFileBuffers
SetProcessWorkingSetSize
GetLastError
GetSystemTime
GetLocalTime
LCMapStringA
CompareStringW
LCMapStringW
SetStdHandle
GetOEMCP
CompareStringA
GetCPInfo
GetStringTypeW
GetACP
HeapReAlloc
GetStringTypeA
VirtualFree
HeapCreate
VirtualAlloc
GetFileType
GetStdHandle
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
SetHandleCount
FreeEnvironmentStringsW
FreeEnvironmentStringsA
WideCharToMultiByte
SetEnvironmentVariableW
HeapAlloc
UnhandledExceptionFilter
RtlUnwind
GetSystemTimeAsFileTime
GetTimeZoneInformation
ExitProcess
MultiByteToWideChar
GetVersion
HeapFree

user32

EnumWindows
SendMessageTimeoutA
SystemParametersInfoA
GetWindowThreadProcessId
DestroyWindow
SetTimer
CreateDialogParamA
UpdateWindow
TranslateMessage
GetDlgItem
DispatchMessageA
IsWindow
SendMessageA
LoadCursorA
BeginPaint
EndPaint
PostMessageA
GetSystemMetrics
ShowWindow
DefWindowProcA
KillTimer
PostQuitMessage
CreateWindowExA
RegisterWindowMessageA
RegisterClassA
GetMessageA
MessageBoxA
WaitForInputIdle
SetWindowTextA

gdi32

RealizePalette
SelectPalette
CreateDIBitmap
CreatePalette
DeleteObject
CreateDCA
SelectObject
CreateCompatibleDC
BitBlt
DeleteDC

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2f62b725a15664ca240530c65aa790a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 64KB - Virtual size: 62KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 19KB

.rsrc Size: 4KB - Virtual size: 344B

.text
Size: 64KB - Virtual size: 62KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 4KB - Virtual size: 344B