745f0ac5a338244f49b41fe807505ee19a2a7f40f1a60692adbfe78c181076d0

Sharing

Copy URL Twitter E-mail

General

Target

745f0ac5a338244f49b41fe807505ee19a2a7f40f1a60692adbfe78c181076d0
Size

384KB
MD5

532f355076ba7a44e2c3d19f12206e8c
SHA1

5194e9473d62219e35b8cf3d4b23a32e529563fb
SHA256

745f0ac5a338244f49b41fe807505ee19a2a7f40f1a60692adbfe78c181076d0
SHA512

349469aabe76bd2c0cbc517f7b4e325c243f3b4ec65fda83c9e52f91f6e292a7710fbf5fd7e0714f00e9075d397400196420103c8976a03bd625c88daf46905e
SSDEEP

6144:t0z8xy1I4gBV9b3XavQS5duIF3lHhKFth2wzPz7U8mmQ0qW8PBpzzBhuCop1aLis:E8xaI4w9javJ5jF3l0FtJzb7US7UVuRC

Score

N/A

Malware Config

Signatures

Files

745f0ac5a338244f49b41fe807505ee19a2a7f40f1a60692adbfe78c181076d0
.exe windows x86

426d065fc7dc7d1499c943f2571d83e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
SetLastError
GetFileSize
ExitProcess
GetTickCount
CreateFileA
TlsSetValue
SetEndOfFile
Sleep
InterlockedDecrement
GetFileAttributesW
CreateEventA
GlobalAlloc
LoadResource
InitializeCriticalSection
GetTimeZoneInformation
GetEnvironmentStrings
TerminateProcess
GetOEMCP
SetFileAttributesA
GetACP
FindFirstFileW
SetStdHandle
CloseHandle
GetModuleHandleA
WriteFile
SetUnhandledExceptionFilter
FindFirstFileA
DeleteCriticalSection
FlushFileBuffers
SetFilePointer
GetStringTypeA
MapViewOfFile
GetCPInfo
FreeEnvironmentStringsA
CompareStringA
CompareStringW
HeapSize
InterlockedCompareExchange
ReadFile
GetCommandLineA
FreeEnvironmentStringsW
GetStartupInfoW
MultiByteToWideChar
SetErrorMode
UnhandledExceptionFilter
WideCharToMultiByte
LockResource
LocalAlloc
SizeofResource
GetCurrentProcess
VirtualFree
lstrlenW
GetVersionExA
LoadLibraryA
GlobalUnlock
InterlockedExchange
IsBadWritePtr
HeapAlloc
HeapDestroy
QueryPerformanceCounter
FreeLibrary
SetEvent
GetModuleFileNameW
ReleaseMutex
GetConsoleOutputCP
EnterCriticalSection
HeapFree
GetLastError
GetVersion
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
lstrlenA
VirtualAlloc
GetStartupInfoA
GetProcAddress
GetModuleFileNameA
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
TlsAlloc
TlsFree
TlsGetValue
GetEnvironmentVariableA
HeapCreate
RtlUnwind
LeaveCriticalSection
FatalAppExitA
HeapReAlloc
SetConsoleCtrlHandler
GetStringTypeW
LCMapStringA
LCMapStringW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
SetEnvironmentVariableA

user32

GetDesktopWindow
ScreenToClient
SendMessageA
SetWindowTextA
DrawTextA
GetCursorPos
GetDC
PostMessageA
EndPaint
DispatchMessageA
GetWindowRect
GetSystemMetrics
ShowWindow
PostQuitMessage
EndDialog
GetMessageA

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

426d065fc7dc7d1499c943f2571d83e7

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 308KB - Virtual size: 308KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 308KB - Virtual size: 308KB