ac89a9a5dd11a9994f6f22c85a5911c55edbdf6b49dbb33fbc2832e334501972

Sharing

Copy URL Twitter E-mail

General

Target

ac89a9a5dd11a9994f6f22c85a5911c55edbdf6b49dbb33fbc2832e334501972
Size

396KB
MD5

6bb236e2947e23c068a774832c88fff6
SHA1

2cde9fcc5e0930c17fd73623295d8dd7f3f54bd5
SHA256

ac89a9a5dd11a9994f6f22c85a5911c55edbdf6b49dbb33fbc2832e334501972
SHA512

36cd24f212b2468ae6dab21e50709abe15204568719345632840388e4b76893f72f7df8786d58d0c8650f90377991b3537819a42faca56eb20181c75c9bd555b
SSDEEP

6144:VvaM0Q9irAMSJLXbdNUGa1iWLMQA7sFeAPjJIyHrAKXCdB7kWOfMeIyT:EMl9iGhXJNUwcMQAoFeA7JFLAXKAe/

Score

N/A

Malware Config

Signatures

Files

ac89a9a5dd11a9994f6f22c85a5911c55edbdf6b49dbb33fbc2832e334501972
.exe windows x86

dd06a3c2386a63b935a8bcd4206ba20f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
LocalAlloc
GetCurrentThreadId
GetTickCount
TlsSetValue
SetEndOfFile
GetFileType
Sleep
TlsGetValue
CreateEventA
lstrcpyA
HeapCreate
InitializeCriticalSection
QueryPerformanceCounter
WaitForMultipleObjects
GetStringTypeW
HeapReAlloc
GetACP
GetSystemTimeAsFileTime
CloseHandle
GetCurrentProcess
WriteFile
SetUnhandledExceptionFilter
InterlockedExchange
ReadFile
SetFilePointer
CreateThread
CompareStringW
CreateMutexA
SetStdHandle
HeapDestroy
GetProcAddress
GetCommandLineA
MultiByteToWideChar
SetErrorMode
UnhandledExceptionFilter
WideCharToMultiByte
DeleteFileA
WriteConsoleW
GetCurrentProcessId
GetLocaleInfoA
GetEnvironmentStrings
GetCurrentDirectoryA
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
lstrlenW
GetFileAttributesW
GetVersionExA
VirtualProtect
HeapAlloc
IsDebuggerPresent
LCMapStringA
SetEvent
GetFileAttributesA
lstrlenA
SetHandleCount
GetConsoleOutputCP
GetStdHandle
HeapFree
InterlockedDecrement
GetLastError
LoadResource
GetVersion
GetModuleHandleA
GetProcessHeap
ExitProcess
TerminateProcess
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
TlsAlloc
TlsFree
GetCurrentThread
GetEnvironmentVariableA
VirtualFree
RtlUnwind
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
GetCPInfo
GetOEMCP
VirtualAlloc
IsBadWritePtr
LoadLibraryA
SetConsoleCtrlHandler
GetStringTypeA
LCMapStringW
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
CompareStringA
SetEnvironmentVariableA

user32

PtInRect
DestroyWindow
GetClientRect
MessageBoxA
GetSystemMetrics
LoadStringA
DialogBoxParamA
TranslateMessage
GetWindowRect
ShowWindow
KillTimer
ReleaseCapture

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dd06a3c2386a63b935a8bcd4206ba20f

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 316KB - Virtual size: 317KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 316KB - Virtual size: 317KB