51bcda5a42da29f2b881988809f683fb4d0532d285fc885069211c62ac3d2fc0

Sharing

Copy URL Twitter E-mail

General

Target

51bcda5a42da29f2b881988809f683fb4d0532d285fc885069211c62ac3d2fc0
Size

145KB
MD5

e85d5b470ae84a8c33aecf1e73f24cb4
SHA1

4dd0816b20972dec47d0d195105596561276e9c9
SHA256

51bcda5a42da29f2b881988809f683fb4d0532d285fc885069211c62ac3d2fc0
SHA512

0cb90790a1e6227e4ccd0e7243f8db9fed25638b62bebba9b4f8d301fddac4705cdeed5c19ff8e96ac9d0f12ade96e691b6f2c6874440e6db3cc1e8162b84ce4
SSDEEP

3072:rU8Di8OxSBJ4VacqpMWR5lYy2d8+elIEZ+0+IEx6Tt4Djm/ZXSUOV5:rUsi9xi4V3qpMEzYV8+elIEZ+xPa6jua

Score

N/A

Malware Config

Signatures

Files

51bcda5a42da29f2b881988809f683fb4d0532d285fc885069211c62ac3d2fc0
.exe windows x86

a9a5bcc7b541703ea04e2405c650ae2d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowDC
GetKeyState

kernel32

WinExec
DeviceIoControl
CreateMutexW
FoldStringW
FlushViewOfFile
GetCommandLineW
OpenSemaphoreW
GetWindowsDirectoryA
LoadLibraryA
GetWindowsDirectoryW
VirtualProtect
EnumSystemLocalesA
SetCommMask
DeleteFileA
SystemTimeToFileTime
GetComputerNameExW
GetUserDefaultLCID
CopyFileW
GetFileAttributesExA
SetFilePointer
GlobalReAlloc
ClearCommError
ReleaseSemaphore
GetTempFileNameA
GetModuleFileNameA
GetSystemDefaultUILanguage
HeapWalk
FileTimeToLocalFileTime
FreeResource
HeapUnlock
SetupComm
TransactNamedPipe
SetFileTime
GetCommTimeouts
AddAtomA
GetExitCodeThread
GetShortPathNameW
FindResourceA
OpenFile
IsDBCSLeadByteEx
SetSystemTime
GlobalGetAtomNameW
EnumResourceNamesW
InitializeCriticalSection
GetOverlappedResult
lstrlenW
SetCommState
CreateWaitableTimerW
GlobalAddAtomW
GetFileSize
ReadFile
GetFileAttributesA
CreateFileMappingA
GetTempFileNameW
DeleteAtom
SetThreadLocale
GetShortPathNameA
LocalReAlloc
LeaveCriticalSection
CreateFileA
GetCurrentThread
GetHandleInformation
GetNumberFormatW
IsBadStringPtrW
IsValidLanguageGroup
GlobalLock
CreateEventA
FindCloseChangeNotification
FindFirstFileA
MulDiv
GetFullPathNameW
ReleaseMutex
TlsGetValue
SetPriorityClass
GlobalAddAtomA
FindFirstChangeNotificationW
FormatMessageA
IsBadReadPtr
EnumResourceLanguagesA
DeleteFileW
RemoveDirectoryW
GetStartupInfoW
GetThreadLocale
FindClose
lstrcatA
CreateThread
GetLongPathNameW
GetVersionExW
GetEnvironmentStringsW
SetCurrentDirectoryA
lstrcmpiW
CreateEventW
VirtualFree
SetThreadContext
GetCurrentDirectoryW
GlobalFlags
TryEnterCriticalSection
CompareStringA
WideCharToMultiByte
HeapSize
IsBadCodePtr
GetUserDefaultLangID
EscapeCommFunction
SetNamedPipeHandleState

shlwapi

ord29

Exports

Exports

?TLS@@YGXK@Z

Sections

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9a5bcc7b541703ea04e2405c650ae2d

Headers

File Characteristics

Imports

user32

kernel32

shlwapi

Exports

Exports

Sections

.reloc Size: 2KB - Virtual size: 1KB

.text Size: 50KB - Virtual size: 50KB

.idata Size: 2KB - Virtual size: 2KB

.data Size: 19KB - Virtual size: 19KB

.data Size: 6KB - Virtual size: 5KB

.data Size: 18KB - Virtual size: 18KB

.data Size: 18KB - Virtual size: 18KB

.data Size: 9KB - Virtual size: 9KB

.data Size: 15KB - Virtual size: 15KB

.data Size: 1024B - Virtual size: 668B

.rsrc Size: 1024B - Virtual size: 558B

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 50KB - Virtual size: 50KB

.idata
Size: 2KB - Virtual size: 2KB

.data
Size: 19KB - Virtual size: 19KB

.data
Size: 6KB - Virtual size: 5KB

.data
Size: 18KB - Virtual size: 18KB

.data
Size: 18KB - Virtual size: 18KB

.data
Size: 9KB - Virtual size: 9KB

.data
Size: 15KB - Virtual size: 15KB

.data
Size: 1024B - Virtual size: 668B

.rsrc
Size: 1024B - Virtual size: 558B