c15f3fb08325ccf56e6dc0c8e2b7759d7d440820e6cd4c90b180b581ffa45379

Sharing

Copy URL Twitter E-mail

General

Target

c15f3fb08325ccf56e6dc0c8e2b7759d7d440820e6cd4c90b180b581ffa45379
Size

153KB
MD5

4abd6b4d4fc37f78f3ceebb049912dd6
SHA1

e88aebec44067a4f8c293016f379786a868a9a27
SHA256

c15f3fb08325ccf56e6dc0c8e2b7759d7d440820e6cd4c90b180b581ffa45379
SHA512

47e2d9b8371db4168efd7cbd279a588152fc349ea35583712818044b22b06157acc468a6a6251420eb76f047cf2411f34b2d5ca337df57226f9e5d0adfd77830
SSDEEP

3072:1rzOeihH5XUV7iOeYfVTq29fizzPIbsir6jxdoiak65wuEZnOVLToq:ZOeWkVWOXVL9KvIbsrqitjukqLT1

Score

N/A

Malware Config

Signatures

Files

c15f3fb08325ccf56e6dc0c8e2b7759d7d440820e6cd4c90b180b581ffa45379
.exe windows x86

5a7202c1e3a3bd80111bb309db9cc49a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
__p__commode
exit
_XcptFilter
iswdigit
__getmainargs
??0exception@@QAE@XZ
strchr
fflush
??_U@YAPAXI@Z
fclose
_wcsnicmp
wcsrchr
qsort
?terminate@@YAXXZ
wcsstr
??2@YAPAXI@Z
__wgetmainargs
_stricmp

kernel32

CreateFileMappingW
GetSystemDefaultLangID
VirtualAlloc
ExitProcess
HeapAlloc
GetStartupInfoA
TlsFree
LCMapStringA
CreateDirectoryW
CompareStringW
FormatMessageA
GetCurrentProcess
CompareStringA
lstrcmpA
IsDebuggerPresent
GetCurrentDirectoryA
GetStringTypeA
CreateSemaphoreW
IsBadWritePtr
LocalFree
FreeEnvironmentStringsW
FormatMessageW
GetSystemInfo
DuplicateHandle
InitializeCriticalSectionAndSpinCount
HeapFree
ExpandEnvironmentStringsA
GlobalReAlloc
lstrcpyW
GlobalUnlock
LoadLibraryA
WritePrivateProfileStringA
SetCurrentDirectoryA

user32

GetDlgCtrlID
InflateRect
FillRect
PostMessageW
IsDialogMessageA
InvalidateRect
RegisterClassExW
SetScrollPos
CreateWindowExA
SetTimer
MessageBoxW
MessageBoxA
LoadMenuW
DispatchMessageA
DrawTextA
DeleteMenu
SetWindowTextA
GetKeyState
GetClassNameA
KillTimer
GetClassNameW
IntersectRect
GetMessageW
SetRectEmpty
GetNextDlgTabItem
IsWindow
CheckDlgButton
SetDlgItemTextA
GetMessageA
LoadStringA
SetCursor
EnumThreadWindows
ReleaseCapture

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a7202c1e3a3bd80111bb309db9cc49a

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

Sections

.text Size: 75KB - Virtual size: 75KB

.rdata Size: 1024B - Virtual size: 1024B

.data Size: 26KB - Virtual size: 281KB

.rsrc Size: 57KB - Virtual size: 57KB

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 75KB - Virtual size: 75KB

.rdata
Size: 1024B - Virtual size: 1024B

.data
Size: 26KB - Virtual size: 281KB

.rsrc
Size: 57KB - Virtual size: 57KB

.reloc
Size: 1024B - Virtual size: 1024B