e6a1de97191766874a47d847f51aa62e243cb8858bc53b75aa3df44bd3255e61

Sharing

Copy URL Twitter E-mail

General

Target

e6a1de97191766874a47d847f51aa62e243cb8858bc53b75aa3df44bd3255e61
Size

1.6MB
MD5

5abc12615fd8f0486c0e49dcd792c22e
SHA1

8ef4410009eee6c3e9d3ec3672e76f4ea91cedba
SHA256

e6a1de97191766874a47d847f51aa62e243cb8858bc53b75aa3df44bd3255e61
SHA512

dab8e3366e7a60ee711c400fb075e9ecd65a36a6bb87c9bf3d61ccb59b3cefab24cf29b8bfbd8a5cd2502009abaa0322b6b69b4e25430f3d2d4112c072ac6568
SSDEEP

49152:taURv1epRtOGSCD/A+UE7JoRs8kUMa7yRH1nY:taURUpRtBGwKKc7ut

Score

N/A

Malware Config

Signatures

Files

e6a1de97191766874a47d847f51aa62e243cb8858bc53b75aa3df44bd3255e61
.exe windows x86

78a1dff283e5da5e1bcf078d808f8956

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
GetClassLongW
SendInput
DrawTextExW
DefMDIChildProcA
DdeQueryStringW
GetWindowInfo
OemKeyScan
wsprintfA
SetMenuItemInfoA
DrawFrame
DefWindowProcA
RegisterClipboardFormatW
GetWindowWord
ShowWindow
RegisterClassExA
DestroyCaret
RegisterClassA
ReplyMessage
CreatePopupMenu
EnumDesktopsW
IsDialogMessageW
DestroyWindow
RealGetWindowClass
IsCharAlphaW
CreateWindowExA
MessageBoxA
GetClassInfoW

comctl32

DrawInsert
DrawStatusTextW
CreateToolbarEx
InitCommonControlsEx
CreatePropertySheetPageA
ImageList_ReplaceIcon

kernel32

GetProfileIntA
GetEnvironmentStringsW
QueryPerformanceCounter
GetTempPathA
GetCommandLineA
WriteProfileStringA
GetSystemTimeAsFileTime
GetSystemDefaultLCID
CloseHandle
RtlUnwind
GetSystemDefaultLangID
GetProcAddress
IsValidCodePage
UnhandledExceptionFilter
WaitForMultipleObjectsEx
HeapDestroy
WideCharToMultiByte
LoadLibraryA
GetStringTypeA
GetVersionExA
GetSystemInfo
GetEnvironmentStrings
GetModuleFileNameA
SetStdHandle
OpenMutexA
WriteFile
LCMapStringW
HeapAlloc
GetStartupInfoA
GetComputerNameA
HeapCreate
ReadFile
DeleteFileW
FreeEnvironmentStringsW
GlobalFindAtomA
TlsAlloc
LeaveCriticalSection
GetOEMCP
GetStdHandle
SetFilePointer
TlsGetValue
ExitProcess
GetCurrentThread
GetCurrentProcessId
EnumSystemLocalesA
IsValidLocale
TerminateProcess
GetUserDefaultLCID
LCMapStringA
HeapFree
MultiByteToWideChar
FlushConsoleInputBuffer
SetLastError
GetCurrentProcess
IsBadWritePtr
GetDiskFreeSpaceW
GetCPInfo
GetStringTypeW
SetHandleCount
CompareStringA
EnterCriticalSection
TlsSetValue
FreeEnvironmentStringsA
GetTimeZoneInformation
GetACP
GetLocaleInfoW
InitializeCriticalSection
CreateFileA
VirtualAlloc
GetDateFormatA
CompareStringW
GetLastError
GetCurrentThreadId
HeapReAlloc
VirtualQuery
CreateMutexA
GetTimeFormatA
TlsFree
GetTickCount
OpenEventW
VirtualProtect
GetFileType
SetEnvironmentVariableA
GetModuleHandleA
GetLocaleInfoA
GetProcAddress
SetConsoleCtrlHandler
HeapSize
FlushFileBuffers
lstrcpyW
CreateFileMappingW
WritePrivateProfileStringA
WriteConsoleOutputCharacterW
VirtualFree
DeleteCriticalSection
InterlockedExchange

Sections

.text
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78a1dff283e5da5e1bcf078d808f8956

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 369KB - Virtual size: 369KB

.rdata Size: 30KB - Virtual size: 61KB

.data Size: 1.2MB - Virtual size: 1.1MB

.rsrc Size: 45KB - Virtual size: 44KB

.text
Size: 369KB - Virtual size: 369KB

.rdata
Size: 30KB - Virtual size: 61KB

.data
Size: 1.2MB - Virtual size: 1.1MB

.rsrc
Size: 45KB - Virtual size: 44KB