e22f4e49a4c546de7d785c56cfa372df0901b8fa4423e6ade6fd2c24ccbe3aae

Sharing

Copy URL Twitter E-mail

General

Target

e22f4e49a4c546de7d785c56cfa372df0901b8fa4423e6ade6fd2c24ccbe3aae
Size

364KB
MD5

6c1e1683bf5687d11a6f216bdaa1cf70
SHA1

1064d89e57d9a680ba12603a401fc7375b63e3c1
SHA256

e22f4e49a4c546de7d785c56cfa372df0901b8fa4423e6ade6fd2c24ccbe3aae
SHA512

41ff706bf43b0835d722ad2f9caa1c62c7f7f59d450c970a561b240ce6ecdf9b40aceac586b23b0fe4fe8a0c9aef682e44cfa334f135fbff7fa1757d0b648d19
SSDEEP

6144:jIRp6pKW6P8cG6p7fk+QGifBdzPV64KzegDuAOD1tWha:jap6f6JG6pIE4fzPV64KegUrWha

Score

N/A

Malware Config

Signatures

Files

e22f4e49a4c546de7d785c56cfa372df0901b8fa4423e6ade6fd2c24ccbe3aae
.exe windows x86

27b67ebc23a2fd0d27fc5e78b5bf4614

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
WriteConsoleW
HeapSize
FlushFileBuffers
HeapReAlloc
IsProcessorFeaturePresent
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
LCMapStringW
LoadLibraryW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
CreateSemaphoreA
GetFileType
SetHandleCount
GetEnvironmentStringsW
WaitForSingleObject
GetModuleFileNameA
RaiseException
WideCharToMultiByte
MultiByteToWideChar
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetStdHandle
WriteFile
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
CreateThread
CloseHandle
GetVersionExA
OutputDebugStringA
WaitForMultipleObjects
LoadLibraryA
GlobalFree
GetProcAddress
QueryPerformanceCounter
ReleaseSemaphore
GetOEMCP
GetACP
HeapCreate
Sleep
DeleteCriticalSection
GlobalAlloc
InterlockedDecrement
InterlockedIncrement
GetCPInfo
EncodePointer
DecodePointer
ExitProcess
FreeLibrary
GetCurrentProcess
HeapAlloc
FreeEnvironmentStringsW
GetModuleHandleW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapFree
GetLastError

user32

FindWindowA
DialogBoxParamA
UpdateWindow
SetCaretPos
UnregisterHotKey
LoadCursorA
IsWindow
CreateCaret
AppendMenuA
GetSystemMenu
GetWindowRect
PostQuitMessage
LoadStringA
GetParent
LoadIconA
GetWindowInfo
WindowFromPoint
GetClientRect
ShowCaret
GetDC
GetWindowTextA
GetWindowLongA
SetClassLongA
EndDialog
GetSysColor
GetCursorPos
LoadAcceleratorsA

gdi32

GdiFlush
GetCurrentPositionEx
GetTextMetricsA

winspool.drv

ClosePrinter

gdiplus

GdipCreatePen1
GdipDrawLineI
GdipCloneImage
GdipFree
GdipDeletePen
GdipDeleteGraphics
GdipDrawImageRectI
GdipLoadImageFromFile
GdipAlloc
GdipDisposeImage
GdipCreateFromHDC

opengl32

glVertex3f
glEnd
glNormal3f
glClear
glBegin

Sections

.text
Size: 283KB - Virtual size: 282KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27b67ebc23a2fd0d27fc5e78b5bf4614

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

gdiplus

opengl32

Sections

.text Size: 283KB - Virtual size: 282KB

.rdata Size: 50KB - Virtual size: 49KB

.data Size: 6KB - Virtual size: 19KB

.bss Size: 17KB - Virtual size: 17KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 283KB - Virtual size: 282KB

.rdata
Size: 50KB - Virtual size: 49KB

.data
Size: 6KB - Virtual size: 19KB

.bss
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 6KB - Virtual size: 6KB