9e32ecf8a48c01c54022008a9ec7e4caba7cd0d07e53dd78440b30cd27dbfd66

Sharing

Copy URL Twitter E-mail

General

Target

9e32ecf8a48c01c54022008a9ec7e4caba7cd0d07e53dd78440b30cd27dbfd66
Size

189KB
MD5

c96ebc40956efcf6c220efa2b7c434bb
SHA1

de90b8275c7056daf0957d7b65b49077af8e2308
SHA256

9e32ecf8a48c01c54022008a9ec7e4caba7cd0d07e53dd78440b30cd27dbfd66
SHA512

c50a74b6a625fdee2e48df4bffa230d5c4b5d9ddd05e497aef3e8c976e55d86bd6fd2e8dda578a6bc77ed753574b8645e78340a6ea8c44a8a77eb162a9373827
SSDEEP

3072:HTbnl0WkkKRiH5qUDTmxpO0RJcVZ6Typ30Q4UJr2yk0CWjOi/j3mvgqlu80:TKRG5qU/mLRJLYfXJrLPCW6i/j3m42u8

Score

N/A

Malware Config

Signatures

Files

9e32ecf8a48c01c54022008a9ec7e4caba7cd0d07e53dd78440b30cd27dbfd66
.exe windows x86

81b56c48281f85eab9db06620849845b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreatePipe
GetNumberFormatA
GetFileAttributesExA
SetLastConsoleEventActive
ReadConsoleOutputCharacterA
CreateThread
GlobalSize
GetVolumePathNameA
FileTimeToLocalFileTime
TerminateThread
VirtualAlloc
GetThreadTimes
SetConsoleIcon
GetPrivateProfileStructA
ResetEvent
EnumResourceNamesA
GetDiskFreeSpaceExA
WriteConsoleOutputA
VirtualProtect
WriteFileEx
GetConsoleAliasExesA
FlushInstructionCache
Heap32Next
GetConsoleAliasesA
SetPriorityClass
GetConsoleCommandHistoryLengthA
GetCurrentThreadId
LockFile
ClearCommError
SetProcessWorkingSetSize
GetModuleFileNameA
GetProcessWorkingSetSize
WriteConsoleOutputA
RegisterWaitForInputIdle
GetUserDefaultLCID
GetEnvironmentStringsA
OpenFileMappingA
ProcessIdToSessionId
GetSystemTime
FlushFileBuffers
GetEnvironmentVariableA
GetExitCodeThread
GetExitCodeThread
OpenWaitableTimerA
GetProcessPriorityBoost
OpenSemaphoreA
GetEnvironmentStringsA
EnumResourceNamesA
IsBadStringPtrA
ChangeTimerQueueTimer
Heap32Next
ClearCommBreak
GetDefaultCommConfigA
CompareFileTime
GetTempFileNameA
GetConsoleSelectionInfo
GetStringTypeA
OpenEventA
GetLastError
CallNamedPipeA
OpenMutexA
IsBadHugeReadPtr

ws2_32

WSARecv

ntdll

wcscat

imagehlp

CheckSumMappedFile

user32

GetLastActivePopup
EqualRect
GetUserObjectSecurity
GetInternalWindowPos
GetRegisteredRawInputDevices
InSendMessageEx
CreateDesktopA
GetWindowModuleFileNameA
RegisterClipboardFormatA
TileWindows
SetWindowRgn
GetMessagePos
SetProcessDefaultLayout
SwapMouseButton
CharUpperBuffA
DefMDIChildProcA
GetMessagePos
RegisterRawInputDevices
GetClipboardData
GetProcessWindowStation
GetClassLongA
GetLastInputInfo
RegisterClipboardFormatA
GetClipboardFormatNameA
TrackMouseEvent
SetWindowPos
GetDlgItemTextA
EnumClipboardFormats
OpenWindowStationA
UpdateLayeredWindow
DrawMenuBarTemp

advapi32

CredDeleteA

opengl32

glEvalMesh1
glMap1d
glMap2d
glTexCoord2i

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81b56c48281f85eab9db06620849845b

Headers

File Characteristics

Imports

kernel32

ws2_32

ntdll

imagehlp

user32

advapi32

opengl32

Sections

.text Size: 2KB - Virtual size: 1KB

.data Size: 182KB - Virtual size: 182KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 1024B - Virtual size: 1000B

.text
Size: 2KB - Virtual size: 1KB

.data
Size: 182KB - Virtual size: 182KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 1024B - Virtual size: 1000B