cac4990dc91daafa19816952a7639656b056185961c5f91a145ffd7bf174fed4

Sharing

Copy URL Twitter E-mail

General

Target

cac4990dc91daafa19816952a7639656b056185961c5f91a145ffd7bf174fed4
Size

615KB
MD5

4fcd96ace776ba0d9f6c1a97d53f197e
SHA1

08c61813cd98a65ff71a11f0e5439cf37673fb05
SHA256

cac4990dc91daafa19816952a7639656b056185961c5f91a145ffd7bf174fed4
SHA512

4c10964142a3131352dd556f93388d323b2eb9e3cc4d25c377d20bdceca00bcd2fcd961eb0e2c8827bc7df52bd8847bb6aae64417b8cbfcde8e0615e05f06af4
SSDEEP

12288:HFxawdHQXME9tp0hz5136iUhyTYELbfBZJUC:lxvQcRh9Ch5ELjzJ

Score

N/A

Malware Config

Signatures

Files

cac4990dc91daafa19816952a7639656b056185961c5f91a145ffd7bf174fed4
.exe windows x86

b200157f0b0a1e1b44d5786327510a32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetCurrentThreadId
GetProcessHeap
GetModuleFileNameA
GetModuleFileNameW
GetLastError
GetProcessHeap
HeapDestroy
GetProcessHeap
InterlockedDecrement
CloseHandle
CreateThread
GetLastError
GetVersionExA
CreateFileW
HeapFree
HeapAlloc
InterlockedDecrement
GetVersionExA
GetCurrentProcess
DisableThreadLibraryCalls
MultiByteToWideChar
lstrcmpiW
GetCurrentProcessId
MultiByteToWideChar
GetCurrentProcessId
Sleep
VirtualAlloc
LoadLibraryA
FreeLibrary
UnhandledExceptionFilter
lstrlenA
LeaveCriticalSection
MultiByteToWideChar
Sleep
CloseHandle
InterlockedIncrement
HeapFree
GetLastError
InterlockedExchange
LoadLibraryW
HeapFree
HeapDestroy
ReadFile
LeaveCriticalSection
InterlockedExchange
SetLastError
GetCurrentThreadId
GetCurrentProcessId
FreeLibrary
DisableThreadLibraryCalls
GetModuleHandleA
GetTickCount
Sleep
UnhandledExceptionFilter
QueryPerformanceCounter
GetModuleHandleA

user32

CreateWindowExW
GetParent
GetSysColor
DispatchMessageW
SetWindowTextW
BeginPaint
ReleaseDC
SetForegroundWindow
InvalidateRect
SetWindowPos
TranslateMessage
BeginPaint
wsprintfA
SendMessageW
GetSystemMetrics
GetParent
KillTimer
LoadIconW
SendMessageW
DefWindowProcW
DestroyWindow
DestroyWindow
PostMessageW
SetWindowPos
LoadStringW
GetFocus
CreateWindowExW
SendMessageW
DialogBoxParamW
SetFocus
PostMessageW
GetDC
GetWindowLongW
BeginPaint
LoadCursorW
BeginPaint
LoadIconW
GetParent
GetClientRect
SendMessageW
LoadStringW
DestroyWindow
IsWindow
SendMessageW
MessageBoxW
DefWindowProcW
GetDC
PostMessageW
KillTimer
SetWindowLongW
PeekMessageW
CreateWindowExW

Sections

.text
Size: 601KB - Virtual size: 980KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b200157f0b0a1e1b44d5786327510a32

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 601KB - Virtual size: 980KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 601KB - Virtual size: 980KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB