e49c3e91d0e87c3412a0f0ecc744c04030612a21550f2775e777b97dd1526e0a

Sharing

Copy URL Twitter E-mail

General

Target

e49c3e91d0e87c3412a0f0ecc744c04030612a21550f2775e777b97dd1526e0a
Size

236KB
MD5

f8dec07c29a05083ad384a05d48f4183
SHA1

eb7429db1e36d8cfecf959c9ee51b7e553890263
SHA256

e49c3e91d0e87c3412a0f0ecc744c04030612a21550f2775e777b97dd1526e0a
SHA512

639d724145f12e30f7b60374fe5a2ab3c28f8a19c3654406877b5c5d70014ca2f810164dfcd0e822df86f8ab2d2af3451a4255f2b2284b3b65b93f159f2c440d
SSDEEP

6144:GTdWHb2LuBWyVzKkLnftTPepByzgLvfx6aFgLtsKb6B37r:YWHb8yVKkLnFTPoBEgLAUgLmKb6

Score

N/A

Malware Config

Signatures

Files

e49c3e91d0e87c3412a0f0ecc744c04030612a21550f2775e777b97dd1526e0a
.exe windows x86

6d833c5114ef20ad13b468e1fe10562b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetSystemTimeAdjustment
VirtualAlloc
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
GlobalWire
GetOEMCP
GetACP
GetCPInfo
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
GetFileAttributesExW
OpenSemaphoreW
GetSystemPowerStatus
SleepEx
HeapWalk
WritePrivateProfileStringA
BuildCommDCBAndTimeoutsA
ReadFile
GetLocalTime
HeapAlloc
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
GetStringTypeW

user32

EnableWindow
ShowOwnedPopups
SendInput
GetWindowLongW
ValidateRect
GetClassLongA
EndDeferWindowPos

oleaut32

SafeArraySetRecordInfo
VarBoolFromStr
SafeArrayRedim
SafeArrayDestroyData
DispCallFunc
DispInvoke
VarImp
DispGetParam
VarNeg

comctl32

ord16
ord13
ImageList_Remove
ImageList_DrawEx
UninitializeFlatSB
ImageList_GetBkColor
InitCommonControlsEx
ImageList_GetDragImage
ImageList_SetImageCount

shlwapi

PathCommonPrefixW
StrNCatW
SHQueryValueExW
StrChrIW
SHDeleteValueW

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d833c5114ef20ad13b468e1fe10562b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

oleaut32

comctl32

shlwapi

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 84KB - Virtual size: 84KB

.data Size: 1KB - Virtual size: 230KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 84KB - Virtual size: 84KB

.data
Size: 1KB - Virtual size: 230KB

.rsrc
Size: 1KB - Virtual size: 1KB