2a5c41fdf30d170d018f746e1e72bb1c4adb6528c7efc3a880ee5e63788acd58

Sharing

Copy URL

Twitter E-mail

General

Target

2a5c41fdf30d170d018f746e1e72bb1c4adb6528c7efc3a880ee5e63788acd58
Size

646KB
MD5

27c41ef3a6904594f4e143a43eb12220
SHA1

4a985397d5b93550640f55215d8c802a5740e393
SHA256

2a5c41fdf30d170d018f746e1e72bb1c4adb6528c7efc3a880ee5e63788acd58
SHA512

3edc6cfb87a023e1cb034c394ea3cec7d01a02bcce53826dc6ec801b5d10561fd1e7e4f15d667f27a8822dbc3c60b6c49618c788744908903800f96f3e0a8892
SSDEEP

12288:fnvoN4gKfKr/xJTgXfx+Q65gTY11IN8S/804mVpCLuXrTi/Fwc/O5z:fv24MrZJgXfwZCWSb7C0XiScG5z

Score

N/A

Malware Config

Signatures

Files

2a5c41fdf30d170d018f746e1e72bb1c4adb6528c7efc3a880ee5e63788acd58
.exe windows x86

6afebdd53856cadeea9fcb71e7910efa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

crypt32

CryptBinaryToStringW

ole32

CoCreateGuid
CoInitialize
CoUninitialize

kernel32

CloseHandle
CreateFileA
DeleteFileW
EnterCriticalSection
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetLocaleInfoA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
VirtualProtect
lstrlenA
DeleteCriticalSection

ntdll

NtOpenKey
RtlAllocateHeap
RtlDosPathNameToNtPathName_U
RtlFreeHeap
RtlFreeUnicodeString
RtlInitUnicodeString
NtClose

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateFontIndirectA
CreateSolidBrush
DeleteDC
DeleteObject
ExtTextOutA
GetDeviceCaps
GetStockObject
GetTextExtentPoint32A
SelectObject
SetBkColor
SetBkMode
SetTextColor
GetObjectA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

user32

BeginPaint
CharNextA
CreateWindowExA
DefWindowProcA
DestroyWindow
DispatchMessageA
EnableWindow
EndPaint
FillRect
GetClientRect
GetDC
GetFocus
GetSystemMetrics
GetWindowLongA
GetWindowRect
InvalidateRect
KillTimer
LoadCursorA
LoadStringA
MessageBoxA
PostMessageA
PostQuitMessage
ReleaseDC
SendMessageA
SetCursor
SetTimer
SetWindowLongA
SetWindowPos
ShowWindow
SystemParametersInfoA
TranslateMessage
UpdateWindow

Sections

AUTO
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DGROUP
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc2
Size: 215B - Virtual size: 215B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc3
Size: 344B - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6afebdd53856cadeea9fcb71e7910efa

Headers

File Characteristics

Imports

crypt32

ole32

kernel32

ntdll

gdi32

advapi32

user32

Sections

AUTO Size: 48KB - Virtual size: 48KB

DGROUP Size: 125KB - Virtual size: 124KB

.idata Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 220B

.reloc2 Size: 215B - Virtual size: 215B

.reloc3 Size: 344B - Virtual size: 344B

AUTO
Size: 48KB - Virtual size: 48KB

DGROUP
Size: 125KB - Virtual size: 124KB

.idata
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 220B

.reloc2
Size: 215B - Virtual size: 215B

.reloc3
Size: 344B - Virtual size: 344B