ece4779dd6a899ca24aa4e36b06d5ee5da1b4b4b8f2f0e75b35596fdb7331926

Sharing

Copy URL Twitter E-mail

General

Target

ece4779dd6a899ca24aa4e36b06d5ee5da1b4b4b8f2f0e75b35596fdb7331926
Size

284KB
MD5

e990019ff6336d7ab8dbacaa35b1dc4c
SHA1

12b0ae7466ba9ab1327e0105475b362703b97bdf
SHA256

ece4779dd6a899ca24aa4e36b06d5ee5da1b4b4b8f2f0e75b35596fdb7331926
SHA512

d0a2848367b793b3aeb9c5e5cee126e208abb926f2e1e9a2e8d208baae5cfabb1b70cd9244aa5f30de456e113e8c26c626da28b3af78ee99ea7de07fad1bed77
SSDEEP

6144:DADuLNbpIzEB6V1FmfatGwFeSjNp50wQcVa2:DAagzgYWaJjNPa

Score

N/A

Malware Config

Signatures

Files

ece4779dd6a899ca24aa4e36b06d5ee5da1b4b4b8f2f0e75b35596fdb7331926
.exe windows x86

761b42fe1a3fdf542522027333be596d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExpandEnvironmentStringsW
FormatMessageA
GetFileAttributesA
ExpandEnvironmentStringsA
lstrcmpiW
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
SetUnhandledExceptionFilter
lstrlenA
GetProcAddress
Sleep
InterlockedCompareExchange
InterlockedExchange
WriteFile
FormatMessageW
WriteConsoleW
CreateFileW
LocalFree
GetStdHandle
GetFileType
CloseHandle
SearchPathW
UnmapViewOfFile
GetLocaleInfoW
InterlockedDecrement
CreateFileMappingW
MapViewOfFile
LoadLibraryExW
SetLastError
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetVersionExW
GetModuleHandleA
GetACP
MultiByteToWideChar
LocalAlloc
FreeLibrary
LoadLibraryA
GetLastError
CompareStringW
VirtualProtect
GetStartupInfoA

user32

DefWindowProcA
EndDialog
SetWindowLongA
LoadStringW
PostMessageA
SendMessageA
GetWindowLongA
DispatchMessageA
SetDlgItemTextW
SendMessageW
IsDlgButtonChecked
LoadStringA
SetDlgItemTextA
TranslateMessage
IsWindowEnabled
DialogBoxParamW
MessageBoxW
ShowWindow
GetDlgItem
EnableWindow

advapi32

RegCloseKey
RegOpenKeyExA
RegOpenKeyExW
RegEnumKeyExW
RegQueryInfoKeyA
RegQueryValueExW
RegQueryValueExA

ole32

CoCreateInstance
CoUninitialize
CoInitializeEx

msvcrt

__p__fmode
__p__commode
_adjust_fdiv
__set_app_type
__getmainargs
_acmdln
exit
_exit
_onexit
__dllonexit
bsearch
wcschr
_controlfp
__setusermatherr
__CxxFrameHandler
time
_except_handler3
_initterm
free
_XcptFilter
_wcsicmp
wcstoul
_vsnwprintf
memcpy
memset
wcsncmp

msvcp60

?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 257KB - Virtual size: 512KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

761b42fe1a3fdf542522027333be596d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcrt

msvcp60

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 257KB - Virtual size: 512KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 257KB - Virtual size: 512KB

.rsrc
Size: 4KB - Virtual size: 4KB