a0601d8de3d93f18e6180a45d747811d2598377c9e98a064c46a987256825eb8

Sharing

Copy URL

Twitter E-mail

General

Target

a0601d8de3d93f18e6180a45d747811d2598377c9e98a064c46a987256825eb8
Size

921KB
MD5

99a147eed797f40b1c1c45a799335006
SHA1

283bb066c70337693201d2a5388d31b4fd6b5fc0
SHA256

a0601d8de3d93f18e6180a45d747811d2598377c9e98a064c46a987256825eb8
SHA512

c654d767499b94773e70cd04d4dbac039d984785c8de82c2b22938c9770e772b081f0453af6596bbe266c8242a54e5c51ef6b232cf9320fec69a9eb45706b8a8
SSDEEP

24576:vAHixtBMty9UudC0hTtTzkDcnz5DEfdmp6bilYioD:CC/J9U+C0qitgdmkigD

Score

N/A

Malware Config

Signatures

Files

a0601d8de3d93f18e6180a45d747811d2598377c9e98a064c46a987256825eb8
.exe windows x86

c8c192ec57cdcf3daf3f3c19a5cd3d7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndPaint
GetDC
GetClientRect
DestroyWindow
GetParent
EnableWindow
IsWindowEnabled
EnableMenuItem
RegisterClassA
FillRect
DispatchMessageA
BeginPaint
SetWindowLongA
SetWindowTextA
GetDlgItem
LoadCursorA
SetForegroundWindow
EndDialog
MessageBeep
InvalidateRect
SendMessageA
SetWindowPos
PostQuitMessage
SetFocus
CallWindowProcA
GetFocus
SetCursor

kernel32

GetStdHandle
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
DeleteCriticalSection
GetCurrentProcess
CreateFileA
SetErrorMode
SetStdHandle
WideCharToMultiByte
InterlockedExchange
GetSystemTimeAsFileTime
GetStringTypeW
FreeLibrary
LocalFree
FormatMessageW
GetEnvironmentVariableA
LoadResource
FindClose
InterlockedDecrement
GetModuleFileNameW
IsDebuggerPresent
GetVersionExA
GetLastError
GetVersion
GetCurrentThread
GetCurrentThreadId
GetCurrentProcessId
GetTickCount
GetModuleHandleA
GetCommandLineA
ExitProcess
HeapAlloc
GetProcessHeap
GetOEMCP
FindResourceA
GetACP
CloseHandle
ReadFile
TlsFree
RaiseException
HeapSize
lstrlenW
WritePrivateProfileStringA
Sleep
GlobalAlloc
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
InterlockedIncrement
TlsSetValue
GetFileType
GetTimeZoneInformation
GlobalLock
WaitForMultipleObjects
FindFirstFileW
ResetEvent
lstrcpyA
FindFirstFileA
GetSystemInfo
GetProcAddress
CreateDirectoryA
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
QueryPerformanceCounter
GetExitCodeProcess
SetHandleCount
EnterCriticalSection
HeapFree
GetLocaleInfoA
GetConsoleMode
VirtualQuery
TerminateProcess
GetSystemDirectoryA
SetUnhandledExceptionFilter
CreateThread
MultiByteToWideChar
GetModuleFileNameA

oleaut32

SysFreeString
VariantClear
SysAllocString

advapi32

GetTokenInformation
OpenProcessToken

Sections

.text
Size: 895KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8c192ec57cdcf3daf3f3c19a5cd3d7b

Headers

File Characteristics

Imports

user32

kernel32

oleaut32

advapi32

Sections

.text Size: 895KB - Virtual size: 1.2MB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 895KB - Virtual size: 1.2MB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 10KB - Virtual size: 9KB