6e0512bc2b2808dcc5c64ebefd8fde93838f0b4333f9de95b48657f53945f418

Sharing

Copy URL Twitter E-mail

General

Target

6e0512bc2b2808dcc5c64ebefd8fde93838f0b4333f9de95b48657f53945f418
Size

75KB
MD5

e343f1d42fcb814735f282284bcdffaf
SHA1

4d1330636b07f9226d6db3356e9e6492d96d223b
SHA256

6e0512bc2b2808dcc5c64ebefd8fde93838f0b4333f9de95b48657f53945f418
SHA512

e9064a769a4dd01fe0b5baac3fc2850971bdea2c23e8f6d0efd2824f8442f5b580d8b4a6852e8b9ef812f43100a91a9a73b32c6fa1d8d1acc1eee1b9594b6dbd
SSDEEP

1536:hHxzqIfhbp1pD7bhg3EhzASQDQdie3xZaDc3wU6spUDoPqBYRpNg1JhcQAz1jr+W:Nhg0hzASQDQjBoDcHUDIq4ng1JhwBjh

Score

N/A

Malware Config

Signatures

Files

6e0512bc2b2808dcc5c64ebefd8fde93838f0b4333f9de95b48657f53945f418
.exe windows x86

8da7ca554a37c6cff5420f6d679294e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
log10
memcpy
fopen
fseek
fclose
sprintf
fabs
ceil
malloc
floor
free
ftell
fread
strlen
memmove

kernel32

GetModuleHandleA
HeapCreate
CloseHandle
HeapDestroy
ExitProcess
LoadLibraryA
GetProcAddress
Sleep
FreeLibrary
HeapAlloc
HeapFree
GetVersionExA
InitializeCriticalSection
TlsAlloc
EnterCriticalSection
HeapReAlloc
LeaveCriticalSection
TlsGetValue
TlsSetValue
DeleteCriticalSection
InterlockedCompareExchange
InterlockedExchange
WaitForMultipleObjects
GetCurrentThreadId
GetCurrentProcess
GetCurrentThread
DuplicateHandle
CreateSemaphoreA
CreateThread
ReleaseSemaphore

user32

CallWindowProcA
GetWindowLongA
CreateWindowExA
SendMessageA
GetWindow
SetActiveWindow
RemovePropA
DestroyWindow
UnregisterClassA
DestroyAcceleratorTable
LoadIconA
LoadCursorA
SetCursorPos
LoadImageA
SetCursor
GetParent
MapWindowPoints
MoveWindow
SystemParametersInfoA
GetWindowRect
GetSystemMetrics
GetKeyState
SetCapture
PostMessageA
GetCursorPos
ReleaseCapture
GetWindowLongW
CallWindowProcW
RemovePropW
SetWindowLongW
DefWindowProcW
SetPropW
SendMessageW
GetPropW
SetWindowLongA
DefWindowProcA
SetPropA
GetPropA
ClipCursor
ShowCursor
InvalidateRect
ShowWindow
GetForegroundWindow
DestroyIcon
FillRect
BeginPaint
EndPaint
RegisterClassExA

gdi32

DeleteObject
GetStockObject
GetObjectType
GetObjectA
CreateCompatibleDC
GetDIBits
DeleteDC
CreateDIBSection
SelectObject
BitBlt
CreateBitmap
SetPixel

comctl32

InitCommonControlsEx

ole32

CoUninitialize
CoInitialize
RevokeDragDrop

winmm

timeEndPeriod

wsock32

closesocket
WSACleanup
WSAStartup

Sections

.code
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dA..
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8da7ca554a37c6cff5420f6d679294e1

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comctl32

ole32

winmm

wsock32

Sections

.code Size: 9KB - Virtual size: 8KB

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 2KB - Virtual size: 1KB

.dA.. Size: 4KB - Virtual size: 7KB

.rsrc Size: 1KB - Virtual size: 1KB

.code
Size: 9KB - Virtual size: 8KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 2KB - Virtual size: 1KB

.dA..
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 1KB - Virtual size: 1KB