6e4fb47a9ab4a114699aa875e9fd2e1c4e0e3e4dd7da8d1bbaa997a178736ec6

Sharing

Copy URL Twitter E-mail

General

Target

6e4fb47a9ab4a114699aa875e9fd2e1c4e0e3e4dd7da8d1bbaa997a178736ec6
Size

84KB
MD5

00fa9ace84b40ddb26a3502f2c02c9a0
SHA1

f6c860505a4d39a96072813992dd55580a93e8ce
SHA256

6e4fb47a9ab4a114699aa875e9fd2e1c4e0e3e4dd7da8d1bbaa997a178736ec6
SHA512

97c5d9078559d57bddb98ad8aa28a33b2f0dc9309d30695ab055a0484239520d7de264f02763e871db1690739cea793341e2db65756e5c78baa94bffa058c566
SSDEEP

1536:3Ej42i7PCt1kJY3ix6SY+A37feaCMJDmYsLIb4PvYqHB/AdG6:3N2ijCoJY3ix6SDADeak7dJHB/AdG6

Score

N/A

Malware Config

Signatures

Files

6e4fb47a9ab4a114699aa875e9fd2e1c4e0e3e4dd7da8d1bbaa997a178736ec6
.exe windows x86

b54b702305b35178a3578ad1b745b59c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

shlwapi

PathRemoveFileSpecA
PathAppendA
PathIsRootA
PathCombineA

mfc42

ord3259
ord4465
ord3147
ord3262
ord2985
ord2982
ord3136
ord2976
ord3830
ord3081
ord3825
ord3079
ord4080
ord4622
ord3831
ord3738
ord561
ord825
ord815
ord711
ord2528
ord4424
ord6302
ord800
ord1200
ord941
ord1147
ord540
ord5289
ord5714
ord1199
ord413
ord1134
ord2725
ord1908
ord1690
ord6055
ord4078
ord1776
ord4407
ord5241
ord2385
ord5163
ord6374
ord2621
ord5288
ord3798
ord4837
ord4439
ord2648
ord2054
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord1168
ord4168
ord771
ord1008
ord4353
ord5307
ord4259
ord2379
ord6197
ord6380
ord2864
ord4715
ord535
ord823
ord537
ord2614
ord940
ord4277
ord858
ord4129
ord6662
ord819
ord5863
ord568
ord4160
ord668
ord2770
ord922
ord356
ord5849
ord1105
ord6883
ord2764
ord4698
ord860
ord5861
ord5850
ord2763
ord924
ord1907
ord5161
ord5160
ord4905
ord4742
ord4948
ord4358
ord5265
ord4377
ord4854
ord4998
ord2514
ord6052
ord1775
ord5287
ord4835
ord4441
ord2055
ord4425
ord489
ord768
ord2358
ord4258
ord5162
ord4976
ord4710
ord6334
ord3790
ord5710
ord5572
ord2915
ord2818
ord3663
ord4079
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord4673
ord541
ord496
ord4431
ord801
ord4202
ord1576

msvcrt

_controlfp
__p__fmode
__p__commode
_except_handler3
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_setmbcp
_onexit
__dllonexit
strncpy
free
_strdup
atoi
__CxxFrameHandler
_splitpath
__p___argc
__p___argv
_exit
__set_app_type

kernel32

LocalFree
GetLastError
LoadLibraryA
GetModuleFileNameA
FreeLibrary
GetCurrentThreadId
CloseHandle
ReadFile
GetFileSize
CreateFileA
lstrcmpiA
GetTickCount
lstrcpyA
GetExitCodeThread
WaitForSingleObject
GetPrivateProfileStringA
Sleep
FormatMessageA
GetStartupInfoA
GetModuleHandleA

user32

AttachThreadInput
GetWindowTextA
SendMessageA
UpdateWindow
InvalidateRect
BringWindowToTop
SetFocus
GetWindowThreadProcessId
PostMessageA
SetForegroundWindow
SetWindowPlacement
IsWindow
GetClassNameA
IsWindowEnabled
IsWindowVisible
GetDlgItem
GetParent
EnableWindow
wsprintfA
GetWindowPlacement
GetDesktopWindow
GetWindowLongA
GetWindowRect
FindWindowExA
GetFocus

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

ShellExecuteExA

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b54b702305b35178a3578ad1b745b59c

Headers

File Characteristics

Imports

version

shlwapi

mfc42

msvcrt

kernel32

user32

advapi32

shell32

Sections

.text Size: 20KB - Virtual size: 17KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 44KB - Virtual size: 41KB

.text
Size: 20KB - Virtual size: 17KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 44KB - Virtual size: 41KB