98be181628533a71a91b4435d46161cd80a22ca55627ad87bbe9156aeb282312

Sharing

Copy URL Twitter E-mail

General

Target

98be181628533a71a91b4435d46161cd80a22ca55627ad87bbe9156aeb282312
Size

278KB
MD5

8388c3589e5ed08e93fe5eedcebeea26
SHA1

897a507bdc3149b035f3240128fb616ba832fe83
SHA256

98be181628533a71a91b4435d46161cd80a22ca55627ad87bbe9156aeb282312
SHA512

c30e4d545e9a183a9708ef5cc3ac204e400e5c1b21a0665246517889d8b36eb6a37e155a82100614c204e83470b8ab99d676d0c2665477e01785935646da4ba5
SSDEEP

6144:O6aI5iXYS0iqrtGw/tzglnoQInCFmPhv/fVfFIz3bmQXFYcutZCC:Ox0iXYS0fGWzglnoQInCUpv/9FIz3bm2

Score

N/A

Malware Config

Signatures

Files

98be181628533a71a91b4435d46161cd80a22ca55627ad87bbe9156aeb282312
.exe windows x86

4324fe29c57b3fa8335d4a699177902e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharPrevW
RegisterClassA
MessageBoxW
GetCapture
CharPrevA
GetMenuContextHelpId
SendMessageTimeoutW
SetClassLongW
IsIconic
SetActiveWindow
GetWindowLongW
CreateIconIndirect
DestroyCursor
CreateWindowExA
RegisterClassExA
DdeConnectList
CreateDialogIndirectParamW
GetScrollBarInfo
TrackPopupMenu
SendMessageW
ShowWindow

comctl32

InitCommonControlsEx

kernel32

SetStdHandle
GetStringTypeW
LCMapStringA
GetLocaleInfoA
GetOEMCP
GetTimeFormatA
IsBadWritePtr
FlushFileBuffers
ExitProcess
FreeEnvironmentStringsA
CompareStringA
LCMapStringW
GetModuleFileNameA
SetFilePointer
FlushInstructionCache
GetEnvironmentStringsW
MoveFileW
CloseHandle
GetUserDefaultLCID
VirtualAlloc
HeapCreate
GetTimeZoneInformation
UnhandledExceptionFilter
WideCharToMultiByte
OpenMutexA
TlsSetValue
GetStartupInfoW
VirtualQuery
HeapAlloc
InitializeCriticalSection
TlsAlloc
GetCurrentThreadId
CreateMutexA
GetFileType
HeapDestroy
VirtualFree
RtlUnwind
TerminateProcess
HeapReAlloc
EnumSystemLocalesA
lstrcmpiA
GetModuleHandleA
WriteFile
GetLogicalDriveStringsW
ReadFile
GetVersionExA
QueryPerformanceCounter
GlobalFlags
GetCurrentThread
GetCurrentProcessId
IsValidLocale
SetEnvironmentVariableA
GetStartupInfoA
GetStdHandle
MultiByteToWideChar
SetHandleCount
TlsGetValue
VirtualProtect
InterlockedExchange
DeleteCriticalSection
GetLastError
CompareStringW
FindResourceExW
LoadLibraryA
IsValidCodePage
GetDateFormatA
HeapSize
FreeEnvironmentStringsW
GetACP
GetCommandLineW
GetLocaleInfoW
GetCPInfo
CreateMailslotA
GetTickCount
GetStringTypeA
CreateRemoteThread
TlsFree
GetCommandLineA
HeapFree
WaitNamedPipeW
GetSystemTimeAsFileTime
LeaveCriticalSection
GetModuleFileNameW
EnterCriticalSection
SetLastError
GetCurrentProcess
GetVersion
MoveFileExA
GetProcAddress
GetEnvironmentStrings
GetSystemInfo

Sections

.text
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4324fe29c57b3fa8335d4a699177902e

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 173KB - Virtual size: 172KB

.rdata Size: 11KB - Virtual size: 42KB

.data Size: 85KB - Virtual size: 85KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 173KB - Virtual size: 172KB

.rdata
Size: 11KB - Virtual size: 42KB

.data
Size: 85KB - Virtual size: 85KB

.rsrc
Size: 7KB - Virtual size: 6KB