e2e4088147cd3eb0b4bb69545e297dd1085f08ad4da3b0c193ef775bec3f1809

Sharing

Copy URL Twitter E-mail

General

Target

e2e4088147cd3eb0b4bb69545e297dd1085f08ad4da3b0c193ef775bec3f1809
Size

48KB
MD5

3dcd6994cecff4679c536d2b060e8bba
SHA1

b55eaf0e4237e946531c5a84c071d5bc55a67b4a
SHA256

e2e4088147cd3eb0b4bb69545e297dd1085f08ad4da3b0c193ef775bec3f1809
SHA512

5ac70cd435796d519d261ffd9f6f980b3b2982d279ff15c86b48b455b3a8559da219ec6ae4b9dcd01e0f3599562de0e45991ed5e72117eb3d5a99a84be670510
SSDEEP

384:MicmWOn4XinXPLtOU4p1MeslSRWadgRJRtMOZWnSneyKDZ3KDBSuwMKD7KDH4R4j:M9HXy4UAu7S8aSJRh2Sg2y48u

Score

N/A

Malware Config

Signatures

Files

e2e4088147cd3eb0b4bb69545e297dd1085f08ad4da3b0c193ef775bec3f1809
.exe windows x86

8a87aea8ea6c60668a30c74cab678244

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

wsock32

WSACleanup
WSAStartup
closesocket
connect
gethostbyaddr
htonl
htons
inet_addr
inet_ntoa
ioctlsocket
ntohl
recv
select
send
socket

kernel32

GetCommandLineA
GetCurrentThreadId
GetModuleHandleA
GetTickCount
GlobalAlloc
GlobalLock
GlobalUnlock
LocalAlloc
RtlUnwind
RtlZeroMemory
SearchPathA
Sleep
lstrcmpiA
lstrcpyA
CreateThread

user32

IsChild
SetClassLongA
DialogBoxParamA
EndDialog
GetDlgItem
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
GetDlgItemTextA
SendDlgItemMessageA
GetDlgCtrlID
OpenClipboard
CloseClipboard
EmptyClipboard
SetClipboardData
LoadMenuA
GetKeyState
LoadCursorA
LoadIconA
GetMenuState
LoadBitmapA
GetSystemMenu
CheckMenuItem
EnableMenuItem
GetSubMenu
AppendMenuA
ModifyMenuA
SetMenuItemBitmaps
TrackPopupMenu
MessageBoxA
SetCursor
GetCursorPos
GetWindowLongA
SetWindowLongA
SetWindowsHookExA
CallNextHookEx
SendMessageA
GetSysColor
CreateWindowExA
MoveWindow
CallWindowProcA
EnableWindow

gdi32

BitBlt
GetStockObject
SelectObject
SetBkColor
SetBkMode
SetTextColor
CreateCompatibleDC
TextOutA
DeleteDC
DeleteObject

comctl32

CreateUpDownControl
InitCommonControlsEx
ImageList_Create
ImageList_ReplaceIcon
CreateStatusWindowA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

crtdll

__GetMainArgs
atoi
exit
fclose
fgets
fopen
fputs
raise
signal
sprintf
strcat
strchr
strrchr
strstr

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8a87aea8ea6c60668a30c74cab678244

Headers

File Characteristics

Imports

shell32

wsock32

kernel32

user32

gdi32

comctl32

comdlg32

crtdll

Sections

.text Size: 17KB - Virtual size: 17KB

.bss Size: - Virtual size: 3KB

.data Size: 1KB - Virtual size: 1KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 17KB - Virtual size: 17KB

.bss
Size: - Virtual size: 3KB

.data
Size: 1KB - Virtual size: 1KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 24KB - Virtual size: 24KB