b8c46b82b8379d4e091b559fd2c7240bbcb36955a5feaeb64e3802f697eabac4

Sharing

Copy URL Twitter E-mail

General

Target

b8c46b82b8379d4e091b559fd2c7240bbcb36955a5feaeb64e3802f697eabac4
Size

122KB
MD5

ef155904458abacbc3d2f68c22342ab6
SHA1

3b86edbb959c837f31468b6db2aedcfaf83d2b1f
SHA256

b8c46b82b8379d4e091b559fd2c7240bbcb36955a5feaeb64e3802f697eabac4
SHA512

93a0a398ec454f4b2ae707c5a9f56773e928f555f922be49bdacb338b6599ad1db437fe7ae9d1da44b09a9ed4d0301fe8462183756fc575d47b031870f91ab4e
SSDEEP

3072:C+QLFWogpmnypnVpQzYlz5f4zFiTEoLyzjNNyRkYuF:CbFVgpmnSpQzYlzaGEftcWYuF

Score

N/A

Malware Config

Signatures

Files

b8c46b82b8379d4e091b559fd2c7240bbcb36955a5feaeb64e3802f697eabac4
.exe windows x86

9a270604dfaf1fe8d2c9e5bcbf9ac62e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
LoadLibraryW
GetLastError
SetLastError
GetModuleFileNameW
OutputDebugStringA
lstrlenW
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
GlobalUnlock
GlobalLock
LeaveCriticalSection
EnterCriticalSection
InterlockedCompareExchange
lstrcpynW
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
CloseHandle
InitializeCriticalSection
Sleep
GetCurrentThreadId
CreateThread
CreateEventW
SetEvent
GetCommandLineW
GetSystemDirectoryW
LoadLibraryA
RaiseException
GetVersionExW
LocalAlloc
GetVersionExA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersion
GetFileAttributesW
GetModuleHandleA
GetProcAddress
GetModuleHandleW
WaitForSingleObject

user32

PeekMessageW
CharNextW
SendMessageW
SetParent
ShowWindow
CharUpperW
DispatchMessageW
TranslateMessage
CreateWindowExW
DefWindowProcW
EnableWindow
RegisterClassExW
PostThreadMessageW
GetMessageW

advapi32

RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegEnumKeyExW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExA
RegSetValueExW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
GetHGlobalFromStream
CreateStreamOnHGlobal
CoUninitialize
CoInitializeEx
CoRevokeClassObject
CoRegisterClassObject
CoInitialize
StringFromGUID2
CoCreateInstance

msvcrt

__wgetmainargs
_controlfp
??1type_info@@UAE@XZ
_onexit
__dllonexit
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
memset
_amsg_exit
_wcmdln
_except_handler3
free
malloc
_CxxThrowException
wcslen
__CxxFrameHandler
realloc
_c_exit
_exit
_XcptFilter
_cexit
exit

shlwapi

PathFindExtensionW

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9a270604dfaf1fe8d2c9e5bcbf9ac62e

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcrt

shlwapi

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 512B - Virtual size: 844B

.rsrc Size: 5KB - Virtual size: 5KB

.mdata Size: 76KB - Virtual size: 76KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 512B - Virtual size: 844B

.rsrc
Size: 5KB - Virtual size: 5KB

.mdata
Size: 76KB - Virtual size: 76KB