4ebb1f5390c32d2293733c2381153f7be580a76559dd274f561dc55f546b296c

Sharing

Copy URL Twitter E-mail

General

Target

4ebb1f5390c32d2293733c2381153f7be580a76559dd274f561dc55f546b296c
Size

55KB
MD5

305654a782f603fde832a48be386c72c
SHA1

883f06e25fc4cef182a0c0d796bebc39deec359a
SHA256

4ebb1f5390c32d2293733c2381153f7be580a76559dd274f561dc55f546b296c
SHA512

ce471079fdaa43f3f591e91c049e34468a579c608126c1efd7b583c105beaeb98973ba99bd0c84aa0b36eacc385e407e2762298bd3a063c5343284955051ce78
SSDEEP

768:iH8oecXHhc9GLH++m4Kh3p7e9AHBr5eFCO5CWe1iL7MEaA5bl5YPIY1PA2pxt9RH:doZhK+m937TBr84OIsfasH8IyFJdb

Score

N/A

Malware Config

Signatures

Files

4ebb1f5390c32d2293733c2381153f7be580a76559dd274f561dc55f546b296c
.zip
_locales/en/messages.json
_locales/ru/messages.json
background.html
.html
background.js
.js
content.js
.js
images/icon_128.png
.png
images/icon_16.png
.png
images/icon_48.png
.png
manifest.json
plugin/mpoe.dll
.dll windows x86

4e8449fb651df07c81b125c7326f7fdc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
MultiByteToWideChar
GetFileAttributesW
WideCharToMultiByte
CreateProcessW
RaiseException
RtlUnwind
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetLastError
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleA
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
ExitProcess
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
WriteFile
SetFilePointer
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
LoadLibraryA
InitializeCriticalSection
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
CreateFileA
FlushFileBuffers

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW

Exports

Exports

NP_GetEntryPoints
NP_Initialize
NP_Shutdown

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e8449fb651df07c81b125c7326f7fdc

Headers

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 6KB