c2a428de9ce6817bd922e7517fe0bb7cc5827ebadebe3b4fb409c8c83d607a56

Sharing

Copy URL Twitter E-mail

General

Target

c2a428de9ce6817bd922e7517fe0bb7cc5827ebadebe3b4fb409c8c83d607a56
Size

149KB
MD5

898d58bc47d6b2ad8d633e3c1bc646dc
SHA1

059ccafae74713f453987bebd18b03132da96cd5
SHA256

c2a428de9ce6817bd922e7517fe0bb7cc5827ebadebe3b4fb409c8c83d607a56
SHA512

430c7f51e4e5a5fd1c29384e373ec761df7bc05922d67fcae0290d00fa8bd65e5258bd975960f0ec14271f6c7a06578b77e0dcfbef2d62bd1a429e25119d90f9
SSDEEP

3072:QXhV/OaFzoBMOY23OYTkCtf6fz1x0NPVC7vEmZOZBmc0NOloSt92hlfo62:QXn5yM23lNSzPjxZom1NO3/28z

Score

N/A

Malware Config

Signatures

Files

c2a428de9ce6817bd922e7517fe0bb7cc5827ebadebe3b4fb409c8c83d607a56
.exe windows x86

c2a84c952503fc1896da1e11e435e4ff

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

towlower
fclose
??2@YAPAXI@Z
tolower
_wcslwr
_stricmp
_lseeki64
??1type_info@@UAE@XZ
strrchr
__dllonexit
memset
_strnicmp
mbstowcs
__p__commode
printf
__getmainargs
??3@YAXPAX@Z
_c_exit
free
_cexit
qsort
setlocale
__initenv
_CIpow
_beginthreadex
wcscpy
_CxxThrowException
fwrite

kernel32

WriteFile
IsDBCSLeadByte
WaitForSingleObject
CreateMutexA
GetExitCodeProcess
GlobalUnlock
HeapDestroy
MapViewOfFile
ExitProcess
GetSystemInfo
GetSystemTimeAsFileTime
GetStringTypeW
FileTimeToSystemTime
GetCommandLineW
GetSystemDirectoryW
GetStdHandle
WaitForMultipleObjects
CreateFileMappingA
LoadLibraryExA
GetSystemDirectoryA
ExpandEnvironmentStringsW
GetVersion
OpenEventW
GetFileAttributesA
RtlUnwind
SetHandleCount
SetThreadPriority
lstrcatW
GetCurrentProcessId
lstrcpynA
OutputDebugStringA
InterlockedDecrement
lstrcatA
GetTickCount
SystemTimeToFileTime
InterlockedIncrement
ResumeThread
SetFileAttributesA
GetVersionExA
GetSystemTime
VirtualAlloc
QueryPerformanceCounter
CreateEventW
GetFileSize
GetProcessHeap
GetConsoleMode
FreeEnvironmentStringsW
GetUserDefaultLCID
lstrcpynW
VirtualQuery
GetModuleHandleW
FreeEnvironmentStringsA
FindFirstFileW
CreateMutexW
OpenMutexW
DisableThreadLibraryCalls
GetModuleHandleA
RaiseException
HeapSize
SetFilePointer
GlobalLock
GetCommandLineA
GetFileType
ReleaseMutex

user32

GetDesktopWindow
MsgWaitForMultipleObjects
CallWindowProcW
TrackPopupMenu
MapDialogRect
IsWindowEnabled
CharUpperW
SetFocus
IsRectEmpty
LoadStringW
GetMessageA
ClientToScreen
DrawFocusRect
ScreenToClient
GetMessagePos
SetCursor
SetCapture
SendDlgItemMessageW
GetWindowTextLengthW
LoadCursorA
CharNextA
MessageBoxA
GetWindow
PostQuitMessage
GetWindowTextW
GetWindowDC
IsIconic
EnableMenuItem
UpdateWindow
SendDlgItemMessageA
DrawTextA

Sections

.text
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 182B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 512B - Virtual size: 139B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 512B - Virtual size: 242B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 512B - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2a84c952503fc1896da1e11e435e4ff

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

Sections

.text Size: 135KB - Virtual size: 135KB

.tls Size: 512B - Virtual size: 380B

.tls Size: 512B - Virtual size: 126KB

DATA Size: 512B - Virtual size: 182B

.textbss Size: 512B - Virtual size: 139B

.textbss Size: 512B - Virtual size: 242B

.textbss Size: 512B - Virtual size: 37KB

.textbss Size: 512B - Virtual size: 104B

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 135KB - Virtual size: 135KB

.tls
Size: 512B - Virtual size: 380B

.tls
Size: 512B - Virtual size: 126KB

DATA
Size: 512B - Virtual size: 182B

.textbss
Size: 512B - Virtual size: 139B

.textbss
Size: 512B - Virtual size: 242B

.textbss
Size: 512B - Virtual size: 37KB

.textbss
Size: 512B - Virtual size: 104B

.rsrc
Size: 9KB - Virtual size: 9KB