27ebadb1f563c9065f321d1ed2d70b65a17d9fbb731d3fc7832e85ede9fc28b3

General

Target

27ebadb1f563c9065f321d1ed2d70b65a17d9fbb731d3fc7832e85ede9fc28b3
Size

160KB
MD5

b3fcd5c2925c0e1017ba98aaccf9f731
SHA1

258219fceea8588bb311f57027541a6f2382dc5e
SHA256

27ebadb1f563c9065f321d1ed2d70b65a17d9fbb731d3fc7832e85ede9fc28b3
SHA512

b2549c06886456967c2883a11ed694cc1a713d832babedda3d5e0854ccf379ab677e9eea49f78d73fe8f3a60b01d439e1a2404d8d81acbc62c7d09ddfe6e1824
SSDEEP

3072:+dtoklL2SWwFizwaZtMDNmcrpWstuZlVahbVhFQAJZ2LPY:1e2SWwwwVDNxYs26hbVcAR

Score

N/A

Malware Config

Signatures

Files

27ebadb1f563c9065f321d1ed2d70b65a17d9fbb731d3fc7832e85ede9fc28b3
.exe windows x86

54619ccd61b1d9610a8a9a806a613a3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
CloseHandle
VirtualQueryEx
CreateFileA
IsDebuggerPresent
lstrcmpA
FindResourceA
GetFileAttributesA
Module32Next
WriteConsoleA
GetModuleHandleA
PulseEvent
GetLocaleInfoA
GlobalMemoryStatus
FreeLibrary
lstrcpyA
RtlUnwind
GlobalAddAtomA
ExpandEnvironmentStringsA
InterlockedIncrement
IsBadStringPtrW
HeapAlloc
DeleteFileA
FreeEnvironmentStringsW
GlobalAlloc
RaiseException
GlobalUnlock
GetCommandLineW
LocalFree
WaitForMultipleObjects
GetOEMCP
MapViewOfFile
LoadResource
WideCharToMultiByte
GetTimeFormatA
GetFileTime
GetDateFormatA
GetThreadContext
GetStartupInfoA

user32

CreateDialogParamA
InflateRect
DrawIconEx
DefMDIChildProcA
GetWindow
ScrollWindowEx
EnumWindows
OffsetRect
GetMessageA
GetDoubleClickTime
GetClassLongA
GetSysColor
EndDeferWindowPos
InsertMenuA
CheckDlgButton
SetWindowTextA
GetScrollInfo
GetClassNameA
CloseClipboard
PeekMessageA
ModifyMenuA
wsprintfA
GetWindowLongA
EnumChildWindows
CreateWindowExA
PostMessageA
GetMenuItemID
FillRect
RegisterClassExA
LoadMenuA
MsgWaitForMultipleObjects
GetMenuItemCount
FindWindowA
GetWindowPlacement
DefDlgProcA
DrawMenuBar
InvalidateRgn
PostQuitMessage
SetClassLongA
DrawTextA
KillTimer

msvcrt

memcpy
_initterm
__set_app_type
__setusermatherr
__getmainargs
_except_handler3
exit
_XcptFilter
__p__commode
__p__fmode
_acmdln
_exit
_adjust_fdiv
_controlfp

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54619ccd61b1d9610a8a9a806a613a3d

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 95KB - Virtual size: 95KB

.data Size: 40KB - Virtual size: 92KB

.rsrc Size: 512B - Virtual size: 164B

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 95KB - Virtual size: 95KB

.data
Size: 40KB - Virtual size: 92KB

.rsrc
Size: 512B - Virtual size: 164B