ea396ad7f66332cd1f2694e5b394bd2da5d8531ee16448e52ee0f681dcfb40c9

Sharing

Copy URL Twitter E-mail

General

Target

ea396ad7f66332cd1f2694e5b394bd2da5d8531ee16448e52ee0f681dcfb40c9
Size

151KB
MD5

70c45b85356e7d4212b4860e11e64d2c
SHA1

9d643d165a02dc349469288400dd90a50d19d0e4
SHA256

ea396ad7f66332cd1f2694e5b394bd2da5d8531ee16448e52ee0f681dcfb40c9
SHA512

7b3b2af4ba7e0e7f0a978432ae968e3db7768adf7ca99d6fa71db00d1ed11f70dc2ab4977f242186ab0a8aaa444723f4fce7b9e07bb9682b9b02073b9a7260cd
SSDEEP

3072:OI+Y5vY6g/qN8n8cVcOUhkZo6hYohTGVirbYnibbPwd:OIE65N8n8cTUhOoaYohGVi4nyG

Score

N/A

Malware Config

Signatures

Files

ea396ad7f66332cd1f2694e5b394bd2da5d8531ee16448e52ee0f681dcfb40c9
.exe windows x86

2c4dd6eadb0fefda81056e03912e55d3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseCapture
GetMenuItemCount
GetSubMenu
CloseClipboard
GetClassNameA
IsWindowVisible
IsRectEmpty
IntersectRect
PostMessageA
PtInRect
GetClassNameW
GetMenu
EqualRect
DispatchMessageW
BeginPaint
GetCapture
SetScrollInfo
GetCursorPos
MoveWindow
ClientToScreen
InflateRect
SetScrollPos
SendMessageA
RegisterClassExW
DrawEdge
UnregisterClassA
SetRect
SetWindowRgn

kernel32

GetTempPathA
GetCommandLineW
LoadLibraryA
GetModuleFileNameW
GetDateFormatA
IsDBCSLeadByte
FlushInstructionCache
SetEnvironmentVariableA
lstrcmpW
DeleteCriticalSection
GetSystemTimeAsFileTime
GetFileTime
lstrcpyW
EnterCriticalSection
SetFileAttributesW
UnmapViewOfFile
GetStartupInfoA
HeapCreate
SetConsoleCtrlHandler
VirtualFree
GetCurrentThreadId
MapViewOfFile
GetLocalTime
GetFileInformationByHandle
IsDebuggerPresent
GetTempPathW
HeapDestroy
WideCharToMultiByte
VirtualAlloc
LocalFileTimeToFileTime
SizeofResource
GetCurrentThread
GetTickCount
IsValidCodePage
LeaveCriticalSection
RemoveDirectoryA
GetShortPathNameA
GetStringTypeA
WritePrivateProfileStringA
GetVolumeInformationW
LoadLibraryExW

msvcrt

__getmainargs
??0exception@@QAE@XZ
??_U@YAPAXI@Z
memset
??0exception@@QAE@ABV0@@Z
_stricmp
__p__commode
__setusermatherr
realloc
_wcsnicmp
exit
_wtol
_CxxThrowException
_vsnprintf
_callnewh
__set_app_type

advapi32

CryptAcquireContextW
RegisterEventSourceW
AdjustTokenPrivileges
RegOpenKeyExA

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c4dd6eadb0fefda81056e03912e55d3

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

msvcrt

advapi32

Sections

.text Size: 53KB - Virtual size: 53KB

.rdata Size: 35KB - Virtual size: 35KB

.data Size: 68KB - Virtual size: 247KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 53KB - Virtual size: 53KB

.rdata
Size: 35KB - Virtual size: 35KB

.data
Size: 68KB - Virtual size: 247KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 1024B - Virtual size: 1024B