5e459efd1490088bea8a78f3f6270421d8ed132bff1823e07077c434e917cd2e

General

Target

5e459efd1490088bea8a78f3f6270421d8ed132bff1823e07077c434e917cd2e
Size

123KB
MD5

0a903d1b790bbc1f659a635a83c82377
SHA1

6d7578e65ff2f3995c40f41bc075ce1508a0cc21
SHA256

5e459efd1490088bea8a78f3f6270421d8ed132bff1823e07077c434e917cd2e
SHA512

09c1f1b7c8bfe217b9e80c2793224c5443765aabd6642f7b9bbf2f5242ce183d9ba151e02e307a41852575aa366f5a8f11817c78c924fa7b0ab462d353cc76f4
SSDEEP

3072:UFUSPGDqHEbL7lJmhC/cw0UJUj9Cuk4fKFx:UFUj6Eb1khCRJ8YumFx

Score

N/A

Malware Config

Signatures

Files

5e459efd1490088bea8a78f3f6270421d8ed132bff1823e07077c434e917cd2e
.exe windows x86

64ea01e1ae5890383239dddc7dafa19e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceW
BeginUpdateResourceA
MoveFileA
GetProcessHeap
lstrlenW
RaiseException
GetStartupInfoA
GetCommandLineA
GetTickCount
GetMailslotInfo
SetLocaleInfoW
GetShortPathNameA
GetWindowsDirectoryA
EnumCalendarInfoA
GetUserDefaultLCID
IsDebuggerPresent
VirtualAlloc
EnumSystemCodePagesA
OpenFile
OpenEventA
SetThreadPriority
GetFileAttributesA
EndUpdateResourceA
CreateDirectoryW
GetLocaleInfoA
CreateEventW
GetSystemDefaultLangID
ConnectNamedPipe
GetStartupInfoW
FindAtomW
GetFileTime
GetModuleHandleA
SetPriorityClass
CreateNamedPipeA
EnumDateFormatsW
GetOEMCP
SetComputerNameA
FatalAppExitW
CopyFileA
CompareStringA
Sleep

user32

EnumWindows
UpdateWindow
FillRect
SetActiveWindow
GetMenuItemID
SendDlgItemMessageW
GetMessageA
MonitorFromWindow
CreateAcceleratorTableW
SetDlgItemInt
LoadImageA
CreateDialogIndirectParamW
GetTopWindow
FindWindowA
GetDlgItemTextA

shlwapi

PathUndecorateW
SHSkipJunction
PathIsRelativeW
UrlGetLocationW
PathParseIconLocationA
PathSkipRootW
PathIsUNCServerW
SHCreateShellPalette

gdi32

AbortPath
GetDIBits
CreateScalableFontResourceA
RestoreDC
CreateMetaFileA
GetOutlineTextMetricsA
GetArcDirection
GetGraphicsMode
GetCharWidthI
GetClipRgn
SetWorldTransform
PatBlt
CreateBrushIndirect

advapi32

RegRestoreKeyA
RegQueryValueW
RegDeleteValueW
RegOpenKeyW
RegOpenKeyA

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64ea01e1ae5890383239dddc7dafa19e

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

gdi32

advapi32

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 95KB - Virtual size: 100KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 95KB - Virtual size: 100KB

.rsrc
Size: 11KB - Virtual size: 11KB