e18cdc918859c80a1607e495e17b11aa3666877ac2c2b149a4c84345f9c57176

General

Target

e18cdc918859c80a1607e495e17b11aa3666877ac2c2b149a4c84345f9c57176
Size

271KB
MD5

2dcffc7d865dfab0a27beabd7fdadc20
SHA1

04ef5b9ec3d5b6a2a16cf35dc7af3a2881c0cf66
SHA256

e18cdc918859c80a1607e495e17b11aa3666877ac2c2b149a4c84345f9c57176
SHA512

dc513870eeb246bb9f17319239fc16caeb7f234138551b6a0704ca7b305b7c475c9fff9059930cf45c63dfb6a2afed026b7a551fb17d47b302fa7cfaf06fbd12
SSDEEP

6144:W+F2nHiBlPkFM4w/1Rit0UvLCeWFGdiHBVrj24vugh:WWBMM4qbiVvLCe9diHBVrj2O1

Score

N/A

Malware Config

Signatures

Files

e18cdc918859c80a1607e495e17b11aa3666877ac2c2b149a4c84345f9c57176
.exe windows x86

63730ce108e6768371cffa921ea3ca04

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CallNamedPipeA
ClearCommBreak
CreateDirectoryExA
DebugActiveProcess
DefineDosDeviceW
EndUpdateResourceA
ExitProcess
FlushViewOfFile
GetCurrentDirectoryA
GetProfileSectionA
InterlockedExchange
IsBadReadPtr
LeaveCriticalSection
LoadLibraryExA
LoadLibraryW
QueryDosDeviceW
ReadConsoleOutputCharacterA
RtlMoveMemory
SetCommState
SetConsoleCursorInfo
SetFileAttributesA
SetVolumeLabelW
WriteConsoleOutputCharacterW
WriteConsoleOutputW
_lread
lstrcmp

user32

CharNextA
ChildWindowFromPoint
CopyAcceleratorTableA
DdeEnableCallback
DeferWindowPos
DestroyMenu
FindWindowW
GetCaretBlinkTime
GetClassInfoA
GetMenuInfo
GetMenuItemInfoA
GetMessageExtraInfo
GetUserObjectSecurity
InvalidateRect
IsDialogMessageW
MsgWaitForMultipleObjectsEx
OemToCharBuffW
ScrollDC
SendMessageCallbackA
SendNotifyMessageW
SetClassLongW
WindowFromDC
wsprintfW

gdi32

AddFontResourceW
ColorMatchToTarget
CreateDIBPatternBrushPt
CreateDIBitmap
CreatePatternBrush
Ellipse
EndDoc
EqualRgn
GetBoundsRect
GetDIBColorTable
GetGlyphOutlineA
GetKerningPairsA
GetTextMetricsA
GetViewportExtEx
ModifyWorldTransform
MoveToEx
OffsetRgn
Rectangle
SetDIBits
SetWindowOrgEx
StartDocA
TranslateCharsetInfo

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 267KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 480KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63730ce108e6768371cffa921ea3ca04

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 267KB - Virtual size: 288KB

.idata Size: - Virtual size: 20KB

.rsrc Size: 2KB - Virtual size: 480KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 267KB - Virtual size: 288KB

.idata
Size: - Virtual size: 20KB

.rsrc
Size: 2KB - Virtual size: 480KB