cd3c7064fc0fa1ea1595685d8d526c4a0f20ebf9e20449c5f1c0cb9c45968e60

Sharing

Copy URL

Twitter E-mail

General

Target

cd3c7064fc0fa1ea1595685d8d526c4a0f20ebf9e20449c5f1c0cb9c45968e60
Size

335KB
MD5

02865ba86de73d3f11b2cb8addefbdd0
SHA1

5e459638ab6d501b030aa7d00a27ae332cd41c0a
SHA256

cd3c7064fc0fa1ea1595685d8d526c4a0f20ebf9e20449c5f1c0cb9c45968e60
SHA512

250ac5ec84f18f0d044d91d8c63a93d22233285e3e875bc4a96a26db4433050dd352a397c6cb9fef4b2c35ecb1cb25e06ca4b5d32eed6e3ff19bfeea0c811708
SSDEEP

6144:drmJMTl11099xZ3Xt9uMHLYEkMATCX1Lh1zmDXOR10HfT0d:drwMh11o7PRHxktS9E210Hf2

Score

N/A

Malware Config

Signatures

Files

cd3c7064fc0fa1ea1595685d8d526c4a0f20ebf9e20449c5f1c0cb9c45968e60
.exe windows x86

ece11f748c101852449ff13239b32b38

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WindowFromDC
RegisterClassExA
SubtractRect
SetMessageExtraInfo
RegisterClassA
FindWindowExW
PaintDesktop
MessageBoxA
ShowWindow
OpenIcon
CreateWindowExW
CopyImage
ReuseDDElParam

comctl32

ImageList_DragLeave
DrawStatusTextW
ImageList_SetFilter
ImageList_GetDragImage
ImageList_GetIcon
CreateStatusWindowW
CreatePropertySheetPage
ImageList_Destroy
InitCommonControlsEx
ImageList_Read
ImageList_DragShowNolock

kernel32

WriteFile
GetConsoleOutputCP
VirtualFree
OpenMutexA
OutputDebugStringW
HeapAlloc
TlsGetValue
GetTimeZoneInformation
GetStringTypeW
GetCurrentProcess
CreateMutexA
TerminateProcess
GetStartupInfoA
FillConsoleOutputAttribute
RtlUnwind
GetProcAddress
HeapSize
LeaveCriticalSection
QueryPerformanceCounter
GetStartupInfoW
Sleep
GetEnvironmentStringsW
SetFilePointer
GetLocaleInfoW
SetLastError
LCMapStringA
GetCalendarInfoW
SetStdHandle
GetCPInfo
GlobalDeleteAtom
VirtualAlloc
FreeLibrary
GetOEMCP
WriteConsoleW
IsValidLocale
OutputDebugStringA
HeapFree
GetSystemTimeAsFileTime
lstrcmpA
SetEnvironmentVariableA
IsDebuggerPresent
SetConsoleCtrlHandler
GetLocaleInfoA
DeleteCriticalSection
ExitProcess
GetStringTypeA
GetModuleFileNameW
EnumResourceNamesW
GetFileAttributesExA
ReadFile
GetLastError
GetModuleHandleA
GetModuleFileNameA
FlushFileBuffers
lstrcat
InterlockedExchange
LCMapStringW
InitializeCriticalSectionAndSpinCount
SetHandleCount
SetVolumeLabelW
CompareStringW
GetConsoleCP
GetCurrentProcessId
WideCharToMultiByte
TlsAlloc
FreeEnvironmentStringsW
TlsFree
WriteConsoleA
GetStdHandle
IsValidCodePage
GetUserDefaultLCID
InterlockedIncrement
GetModuleHandleW
GetCommandLineA
GetDateFormatA
TlsSetValue
HeapReAlloc
CreateDirectoryW
EnumCalendarInfoA
LoadLibraryA
GetCommandLineW
UnhandledExceptionFilter
HeapDestroy
MultiByteToWideChar
GetTimeFormatA
ReadConsoleOutputCharacterA
HeapCreate
GetACP
EnterCriticalSection
CreateFileA
GetCurrentThreadId
GetFileType
SetUnhandledExceptionFilter
CompareStringA
CloseHandle
GetConsoleMode
GetThreadSelectorEntry
InterlockedDecrement
VirtualQuery
GetTickCount
GetCurrentThread
OpenEventA
EnumSystemLocalesA

Sections

.text
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ece11f748c101852449ff13239b32b38

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 208KB - Virtual size: 208KB

.rdata Size: 20KB - Virtual size: 40KB

.data Size: 90KB - Virtual size: 89KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 208KB - Virtual size: 208KB

.rdata
Size: 20KB - Virtual size: 40KB

.data
Size: 90KB - Virtual size: 89KB

.rsrc
Size: 15KB - Virtual size: 15KB