fc17b1f105ce6f94ba79976d039cde95d1a6a568ce3f666ad65b70e34edce044

Sharing

Copy URL Twitter E-mail

General

Target

fc17b1f105ce6f94ba79976d039cde95d1a6a568ce3f666ad65b70e34edce044
Size

234KB
MD5

57745128f576bc10ee6cb937739eed04
SHA1

b93d8fdf5fb0022752859af3a2cb3705e663d3f4
SHA256

fc17b1f105ce6f94ba79976d039cde95d1a6a568ce3f666ad65b70e34edce044
SHA512

1c8af022caf3b08b4fc765d9ac15a56d1fccc5c920fdb23e9019255ab4239657470408c33d26b5d5aa522892dbf6f75e21f31a4859f0acb4eb182f13832f8575
SSDEEP

3072:gbVeWDl9/Wspko+HXchPyUJos9t6IT0CDPdyRegLuP8bvyg1+e:gpeQu2ko+H+ss9tRF4N6CUe

Score

N/A

Malware Config

Signatures

Files

fc17b1f105ce6f94ba79976d039cde95d1a6a568ce3f666ad65b70e34edce044
.exe windows x86

d50c9ae9db0f806398543260f1c6c3cc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetSystemTime
GetCommandLineA
ExitProcess
GetProcAddress
VirtualAlloc
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LoadLibraryW
InterlockedExchange
LCMapStringW
MultiByteToWideChar
GetStartupInfoA
GetVersionExA
HeapAlloc
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
HeapReAlloc
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
VirtualQuery
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
GetSystemInfo

user32

PostMessageA
EnableWindow
DestroyWindow

advapi32

DecryptFileA

winscard

SCardGetCardTypeProviderNameA

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.exp
Size: 1024B - Virtual size: 877B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tmain
Size: 1024B - Virtual size: 683B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vgld
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 159KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d50c9ae9db0f806398543260f1c6c3cc

Headers

File Characteristics

Imports

kernel32

user32

advapi32

winscard

Sections

.text Size: 15KB - Virtual size: 15KB

.exp Size: 1024B - Virtual size: 877B

.tmain Size: 1024B - Virtual size: 683B

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 3KB - Virtual size: 4KB

.vgld Size: 32KB - Virtual size: 31KB

.rsrc Size: 159KB - Virtual size: 222KB

.text
Size: 15KB - Virtual size: 15KB

.exp
Size: 1024B - Virtual size: 877B

.tmain
Size: 1024B - Virtual size: 683B

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 3KB - Virtual size: 4KB

.vgld
Size: 32KB - Virtual size: 31KB

.rsrc
Size: 159KB - Virtual size: 222KB