eb073920292a0fb9e93288270fa789e8f13b11a6dfd128bed8f4f6cfa00c7fec

Sharing

Copy URL

Twitter E-mail

General

Target

eb073920292a0fb9e93288270fa789e8f13b11a6dfd128bed8f4f6cfa00c7fec
Size

219KB
MD5

233efe527a4031738ad3e1bdcfcafa34
SHA1

35b602b10d641fa61b689f795023d1440ace4c60
SHA256

eb073920292a0fb9e93288270fa789e8f13b11a6dfd128bed8f4f6cfa00c7fec
SHA512

6f7f73aa21b99df5d78cc0f2ac3a1acb6d6a2cf42d3172c09470db90b45c694b2dedfc778d55891ece595c5edc9c49e12fdd907ee44639048b08714d6d641425
SSDEEP

6144:B5iTQmoZrw/UBVycz1fDdmydFNGcYqkwv46ZFlvwYyBl9:BACVyczBDdmydqDqkwv4QLLCl9

Score

N/A

Malware Config

Signatures

Files

eb073920292a0fb9e93288270fa789e8f13b11a6dfd128bed8f4f6cfa00c7fec
.exe windows x86

4e935067cafeb541fd2ea686e87ccd22

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
OpenMutexA
LockResource
GetModuleHandleA
CloseHandle
lstrcpyA
LCMapStringW
GetStringTypeW
GlobalFree
FlushFileBuffers
WriteFile
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetCurrentProcessId
QueryPerformanceCounter
HeapCreate
GetProcAddress
GetLastError
GlobalUnlock
lstrcatA
MulDiv
SizeofResource
HeapSize
GlobalAlloc
GetTickCount
WaitForSingleObject
GlobalLock
GetCurrentProcess
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
HeapAlloc
LoadResource
HeapReAlloc
FindResourceA
MultiByteToWideChar
ReadFile
GetSystemTimeAsFileTime
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
HeapFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetStdHandle
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
GetFileType
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
IsProcessorFeaturePresent
CreateFileA
CreateFileW
EncodePointer
SetFilePointer
Sleep
SetHandleCount
GetStdHandle
DeleteCriticalSection
RtlUnwind
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
LoadLibraryW

user32

GetWindowThreadProcessId
SetDlgItemTextA
EndPaint
LoadIconA
BeginPaint
EnumWindows
IsDialogMessageA
GetMenu
LoadIconW
GetGUIThreadInfo
MessageBoxA
CreateWindowExA
SetClassLongA
EndDialog
GetMenuItemCount
UpdateWindow
FindWindowA

gdi32

LineTo
SetPixel
SelectObject
Ellipse
CreatePen
GetStockObject
MoveToEx

ole32

CreateStreamOnHGlobal

ws2_32

gethostname

comctl32

ord17

dinput8

DirectInput8Create

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e935067cafeb541fd2ea686e87ccd22

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

ws2_32

comctl32

dinput8

Sections

.text Size: 87KB - Virtual size: 86KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 115KB - Virtual size: 156KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 87KB - Virtual size: 86KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 115KB - Virtual size: 156KB

.rsrc
Size: 1KB - Virtual size: 1KB