0510000af8061b614dd91e3dbdba8a1c2f0c12804b4c8ad2643190b28e4035e8

General

Target

0510000af8061b614dd91e3dbdba8a1c2f0c12804b4c8ad2643190b28e4035e8
Size

285KB
MD5

12ce1559edf018904095a5d90ee57e30
SHA1

5eac39a381d660b5bdd966827ed58eb201ff012a
SHA256

0510000af8061b614dd91e3dbdba8a1c2f0c12804b4c8ad2643190b28e4035e8
SHA512

ab94a4799451695fe4e17cdcc6888fea9e6f8c5498ab7c4b521c95a5a81645e3c5a027fe94578a34589aecf1c65745912db188b0796956f8e111b331378fd9be
SSDEEP

6144:BmZFO5wodOB3uLoZvOfM7dy/e1y34N5EKAYlAUVL3MbjnAfi2I:BmZFvBvToT4oKA1U2bjsI

Score

N/A

Malware Config

Signatures

Files

0510000af8061b614dd91e3dbdba8a1c2f0c12804b4c8ad2643190b28e4035e8
.exe windows x86

4b241118c1e0f7c620c3911fbdae2f61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shell32

ShellExecuteA
Shell_NotifyIconA

kernel32

GlobalUnlock
MulDiv
GlobalAlloc
Sleep
FindAtomA
MultiByteToWideChar
OpenProcess
GlobalHandle
GlobalLock
lstrcmpW
GetTickCount
InterlockedExchange
CloseHandle
WaitForSingleObject
GetModuleFileNameW
lstrlenW
WaitForMultipleObjects
LocalAlloc
GetCurrentProcess
LeaveCriticalSection
EnterCriticalSection
GetSystemDirectoryW
EnumResourceLanguagesW
CreateFileW
GetLocaleInfoW
DeleteCriticalSection
InterlockedIncrement
SetLastError
lstrlenA
CreateThread
GetStringTypeA
GlobalFree
GetComputerNameW
InitializeCriticalSection
FormatMessageW
HeapSetInformation
GetProcessId
RaiseException
InterlockedDecrement
ProcessIdToSessionId
FlushInstructionCache
WideCharToMultiByte

shlwapi

StrRetToStrA
PathIsFileSpecA
PathAppendA
PathIsContentTypeA
SHCreateStreamOnFileEx
PathCreateFromUrlW

oleacc

CreateStdAccessibleObject

Sections

.text
Size: 141KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b241118c1e0f7c620c3911fbdae2f61

Headers

File Characteristics

Imports

shell32

kernel32

shlwapi

oleacc

Sections

.text Size: 141KB - Virtual size: 272KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 141KB - Virtual size: 140KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 141KB - Virtual size: 272KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 141KB - Virtual size: 140KB

.rsrc
Size: 512B - Virtual size: 4KB