c4b11ea4f715ce29f0189a5ff7f3cf122336bafd59e0a50409bb29270176d634

Sharing

Copy URL Twitter E-mail

General

Target

c4b11ea4f715ce29f0189a5ff7f3cf122336bafd59e0a50409bb29270176d634
Size

584KB
MD5

9d515e7f862271117cf37685befac3ad
SHA1

0cadc9d9ed58486e80951ca486aa7f5ae288290f
SHA256

c4b11ea4f715ce29f0189a5ff7f3cf122336bafd59e0a50409bb29270176d634
SHA512

cde17055e818a7612c2c4fca482528305d9af630ea7783c241fe3bf127179d72808f0da250954d2a7b740866eadf6eb24c85facefd620b7a3e90ef3d8cd4f9df
SSDEEP

12288:RWbVW1m1tFZsHtholqH6dU3MEqurfY0VlR22:RE7AHkdUh

Score

N/A

Malware Config

Signatures

Files

c4b11ea4f715ce29f0189a5ff7f3cf122336bafd59e0a50409bb29270176d634
.exe windows x86

e10d0b47a5336ae12b85686cb87a8d64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsAlloc
GetCPInfo
GetLocaleInfoA
GetProcessHeap
GetUserDefaultLCID
GetConsoleCP
GetCommandLineW
HeapReAlloc
InterlockedIncrement
TlsGetValue
EnterCriticalSection
GetLocaleInfoW
DeleteCriticalSection
OpenMutexA
SetLastError
GetStringTypeW
GetConsoleMode
FreeLibrary
GetOEMCP
QueryPerformanceCounter
GetACP
LoadLibraryA
LCMapStringW
SetConsoleCtrlHandler
Sleep
WriteConsoleW
GetConsoleOutputCP
GlobalFindAtomW
GetFileType
GetModuleFileNameW
CreateFileA
HeapAlloc
HeapSize
WriteProfileSectionA
HeapCreate
LeaveCriticalSection
GetProcAddress
InterlockedExchange
GetEnvironmentStringsW
IsValidLocale
GetStartupInfoA
ExitProcess
SetFilePointer
GetModuleFileNameA
GetCurrentThread
GetStartupInfoW
TlsFree
GetEnvironmentStrings
VirtualAlloc
GetTimeZoneInformation
CompareStringA
GetCurrentProcess
FreeEnvironmentStringsA
GetCurrentThreadId
HeapDestroy
LCMapStringA
ReadFile
GetStdHandle
EnumSystemLocalesA
TerminateProcess
FreeEnvironmentStringsW
WriteFile
WriteProfileStringW
GetSystemTimeAsFileTime
VirtualQuery
GetCommandLineA
OutputDebugStringW
SetHandleCount
InitializeCriticalSection
FlushFileBuffers
RtlUnwind
GetVersionExA
IsDebuggerPresent
SetEnvironmentVariableA
MultiByteToWideChar
GetDateFormatA
GetModuleHandleA
GetCurrentProcessId
CreateMutexA
IsBadReadPtr
WriteConsoleA
UnhandledExceptionFilter
TlsSetValue
IsValidCodePage
HeapFree
SetStdHandle
GetTimeFormatA
VirtualFree
ExpandEnvironmentStringsW
GetLastError
LocalReAlloc
GetStringTypeA
CompareStringW
GetTickCount
WideCharToMultiByte
SetUnhandledExceptionFilter
TransactNamedPipe
InterlockedDecrement
CloseHandle

comctl32

InitMUILanguage
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_DragEnter
GetEffectiveClientRect
ImageList_DrawIndirect
CreateToolbar
ImageList_LoadImage
ImageList_SetImageCount
CreateToolbarEx
CreatePropertySheetPageA
ImageList_SetFlags
ImageList_Read

user32

ShowWindow
MessageBoxW
CreateIcon
BroadcastSystemMessage
PostThreadMessageA
CreateWindowExA
VkKeyScanW
RealChildWindowFromPoint
WinHelpA
DefWindowProcA
RegisterClassA
FindWindowW
RegisterClassExA
TrackMouseEvent
DdeAbandonTransaction
GetCursorPos
DrawTextA
DeleteMenu
LoadMenuA
DestroyWindow
CharNextW
SetDoubleClickTime

Sections

.text
Size: 241KB - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 222KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e10d0b47a5336ae12b85686cb87a8d64

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 241KB - Virtual size: 241KB

.rdata Size: 222KB - Virtual size: 235KB

.data Size: 107KB - Virtual size: 107KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 241KB - Virtual size: 241KB

.rdata
Size: 222KB - Virtual size: 235KB

.data
Size: 107KB - Virtual size: 107KB

.rsrc
Size: 12KB - Virtual size: 11KB