14025f5636619a4ec7f9cad705d9d38caacc903b13e267bf68efc03807bdc3dd

Sharing

Copy URL Twitter E-mail

General

Target

14025f5636619a4ec7f9cad705d9d38caacc903b13e267bf68efc03807bdc3dd
Size

53KB
MD5

4b66fc782181fa0d32cce1e1f64e5480
SHA1

4ade03fb5068c7bcd58e3e84e22fae93cfef5c30
SHA256

14025f5636619a4ec7f9cad705d9d38caacc903b13e267bf68efc03807bdc3dd
SHA512

21fdf8077510a04e4803fe0cb4bb8d5ce2919e7e97a5febdf1c0272db95ecf119b30e332d5dde35c1fee9af2ada0feb569cbf11b19d7f6542d3a8fe8ecbf7857
SSDEEP

1536:pDA0UeNorCeyeo/jqnf635JgfJF4zf7V:FA0UOlegjqf6cJe7V

Score

N/A

Malware Config

Signatures

Files

14025f5636619a4ec7f9cad705d9d38caacc903b13e267bf68efc03807bdc3dd
.exe windows x86

0c47360104ffa9fbf7e3299f35b279a9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
_lopen
MapViewOfFile
WideCharToMultiByte
FindClose
SetCurrentDirectoryA
GetWindowsDirectoryA
GetLastError
GetFileAttributesA
GlobalAlloc
FileTimeToSystemTime
_lclose
FindNextFileA
GetFileSize
MoveFileA
CopyFileA
WinExec
GetVolumeInformationA
GetCurrentDirectoryA
SystemTimeToFileTime
CloseHandle
GetProcAddress
GetDiskFreeSpaceA
UnmapViewOfFile
MultiByteToWideChar
GlobalUnlock
GetTempFileNameA
GlobalReAlloc
GetFileTime
InterlockedIncrement
GetEnvironmentVariableA
GlobalMemoryStatus
FreeLibrary
GetModuleHandleA
CreateFileMappingA
SetErrorMode
InterlockedExchange
GetModuleFileNameA
WaitForSingleObject
CreateEventA
FindFirstFileA
CreateDirectoryA
DeleteFileA
ReadFile
GetStartupInfoA
GetFullPathNameA
SetFilePointer
GetTempPathA
SetEndOfFile
GlobalLock
GetTickCount
ExitProcess
HeapAlloc
HeapFree
GetProcessHeap
GetCommandLineA
VirtualProtectEx
LoadLibraryExA
SetFileAttributesA
GlobalFree
WriteFile
_hread
GetDriveTypeA
CreateFileA

user32

ReleaseDC
CharLowerBuffA
SendMessageA
GetDesktopWindow
IsWindow
CharNextA
MessageBoxA
GetSystemMetrics
GetClientRect
GetDC
EnableWindow
DrawIcon
LoadIconA
IsIconic

gdi32

GetObjectA
SelectPalette
GetDIBits
RealizePalette
GetStockObject

shell32

SHFileOperationA

msvcrt

fwrite
__set_app_type
atol
atoi
__CxxFrameHandler
_i64toa
sprintf
rand
localtime
_exit
_XcptFilter
strchr
_adjust_fdiv
_strnicmp
__setusermatherr
_acmdln
_onexit
_initterm
memmove
fclose
_setmbcp
_controlfp
__p__fmode
__p__commode
wcslen
time
_purecall
strncmp
__dllonexit
__getmainargs
exit
_ftol
fopen
_except_handler3
_stricmp

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c47360104ffa9fbf7e3299f35b279a9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

msvcrt

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 14KB - Virtual size: 43KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 14KB - Virtual size: 43KB

.rsrc
Size: 5KB - Virtual size: 5KB