c1b6a0fefac4b444cf2d96bac5da3cea50cfbb19b2964606ed69865e1fc1d245

Sharing

Copy URL Twitter E-mail

General

Target

c1b6a0fefac4b444cf2d96bac5da3cea50cfbb19b2964606ed69865e1fc1d245
Size

1.6MB
MD5

d033b72152871dae9ec51be9fd0eb587
SHA1

5c36063f3f9780e895992556e892792160de4076
SHA256

c1b6a0fefac4b444cf2d96bac5da3cea50cfbb19b2964606ed69865e1fc1d245
SHA512

70af33229c718b6cfe3932d1a4b5d3f1d3ce8c87ff75fff32e75c06f4c49e73963e3c4e1a7fbf39f5fda5004b280e678851a82ef2ebac9944660a9eda763e980
SSDEEP

24576:m3p2qXwrJM+5unBNLg0gweh2/EU5wV5IZmoBBkUlpFSb5jgaEVz:mZ2qXwrvcnBRVycPWeRBB3SKV

Score

N/A

Malware Config

Signatures

Files

c1b6a0fefac4b444cf2d96bac5da3cea50cfbb19b2964606ed69865e1fc1d245
.exe windows x86

514124f069bb9c30c520d56e7ecc8817

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

MakeDragList
ImageList_GetImageRect
ImageList_AddMasked
DrawStatusTextW
ImageList_Destroy
ImageList_SetImageCount
InitCommonControlsEx
CreateMappedBitmap
ImageList_EndDrag
ImageList_Duplicate
ImageList_DrawEx
ImageList_SetBkColor
ImageList_SetFilter
ImageList_DragEnter
ImageList_GetIconSize
ImageList_LoadImageA
ImageList_Create
ImageList_LoadImage
ImageList_GetFlags
CreateToolbar
_TrackMouseEvent

user32

RegisterClassExA
ShowWindowAsync
RegisterClassA

kernel32

LoadLibraryA
CreateMutexA
GetCommandLineA
IsBadWritePtr
GetCurrentProcess
TlsGetValue
LCMapStringA
RtlUnwind
QueryPerformanceCounter
GetProcessAffinityMask
GetOEMCP
GetCurrentProcessId
VirtualAlloc
UnhandledExceptionFilter
HeapAlloc
lstrcpyA
lstrcpyn
VirtualFree
CompareStringW
GetACP
ExitProcess
GetTempPathA
CloseHandle
InitializeCriticalSection
MultiByteToWideChar
GetModuleFileNameA
GetEnvironmentStringsW
SetEnvironmentVariableA
GetStringTypeA
VirtualQuery
EnterCriticalSection
HeapCreate
FreeLibraryAndExitThread
TlsFree
WriteFile
TlsSetValue
GetCPInfo
SetStdHandle
GetStdHandle
GetVersion
SetLastError
WideCharToMultiByte
GetLastError
TerminateProcess
FreeEnvironmentStringsA
HeapDestroy
InterlockedIncrement
HeapReAlloc
GetEnvironmentStrings
GetDateFormatW
InterlockedExchange
LeaveCriticalSection
GetFileType
lstrcmpi
SetFilePointer
DeleteCriticalSection
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTimeZoneInformation
WaitForDebugEvent
CreateWaitableTimerW
HeapFree
GetTickCount
GetLocaleInfoA
GetStartupInfoA
GetLocalTime
SetHandleCount
InterlockedDecrement
GetProcAddress
OpenMutexA
WriteConsoleOutputCharacterA
FreeEnvironmentStringsW
GetCurrentThread
LCMapStringW
GetSystemTime
CompareStringA
GetModuleHandleA
ReadFile
TlsAlloc
FlushFileBuffers
GetStringTypeW

Sections

.text
Size: 283KB - Virtual size: 282KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.3MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

514124f069bb9c30c520d56e7ecc8817

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 283KB - Virtual size: 282KB

.rdata Size: 65KB - Virtual size: 96KB

.data Size: 1.3MB - Virtual size: 1.2MB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 283KB - Virtual size: 282KB

.rdata
Size: 65KB - Virtual size: 96KB

.data
Size: 1.3MB - Virtual size: 1.2MB

.rsrc
Size: 17KB - Virtual size: 17KB