b16b50121e6a88b86415563a23727b8bba3262661a06b4cbd3e459ce7dd15e6e

Sharing

Copy URL Twitter E-mail

General

Target

b16b50121e6a88b86415563a23727b8bba3262661a06b4cbd3e459ce7dd15e6e
Size

75KB
MD5

d4540db93673748617a1fb891e23bab1
SHA1

11bc0ae83b178a1a506f3a5255e411deb273a4f6
SHA256

b16b50121e6a88b86415563a23727b8bba3262661a06b4cbd3e459ce7dd15e6e
SHA512

230c86146b7b4acf1880ec1f78c5d2f9a2c50eb078cef8ca89bd16eb73078716317e55925a2a4d390cb6671b08e6468f629dbd5e170cf93d141b8be6e794247c
SSDEEP

1536:14G3MqeDjp0EAENnjQaZjSSB/rcGQcx5d8HhHUA7/1IaVITorM4D+rIk4u8W94V:CG3MqeD1COjQijFYGbGlUi/+5FILLf

Score

N/A

Malware Config

Signatures

Files

b16b50121e6a88b86415563a23727b8bba3262661a06b4cbd3e459ce7dd15e6e
.exe windows x86

e22d0c6b5793cd53b521a900ae5710e2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetUserDefaultLCID
GetLastError
MapViewOfFileEx
GetProcAddress
WaitForSingleObject
SetCurrentDirectoryA
GetModuleHandleW
GetExitCodeThread
ExitProcess
FindAtomA
VirtualProtect
GetWindowsDirectoryA
GetModuleHandleA
GetStringTypeW
GetCommandLineW
GetSystemTime
GetProfileStringW
GetEnvironmentStrings
GetSystemTimeAsFileTime
OutputDebugStringW
LoadLibraryA

msvcrt

isupper
_ismbcalpha
ldexp
ispunct
isspace
div
isprint
fwprintf
strtol
_winmajor
memcpy
__wgetmainargs
strrchr
_stricoll
fgets
isalnum

user32

DrawMenuBar
OpenWindowStationA
GetMenuState
LoadStringA
EmptyClipboard
ModifyMenuW
GetClassWord
GetMenu
CharNextA
GetProcessDefaultLayout
SetWindowPlacement
OpenClipboard

gdi32

SetDIBits
GetTextFaceW
GetDIBits
SetDIBitsToDevice
CreateCompatibleBitmap
SetTextColor
GetPaletteEntries
GetTextExtentExPointW
GetPixel
CreateDIBSection
CreateFontIndirectW
DeleteDC
GetTextMetricsW
GetRgnBox
GetTextExtentPoint32W

Exports

Exports

NwsajeiOswsxwcQxjqzNp
WolLpymeZysyrHs
RlnQtzhqRqlagbgNkqtj

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e22d0c6b5793cd53b521a900ae5710e2

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 3KB - Virtual size: 3KB

.edata Size: 1KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 4KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 512B - Virtual size: 134B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 3KB - Virtual size: 3KB

.edata
Size: 1KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 512B - Virtual size: 134B