afe5c948518a229e059da82fb51375548bc258ef0ddc1bb6499dd12d6d9932bb

Sharing

Copy URL Twitter E-mail

General

Target

afe5c948518a229e059da82fb51375548bc258ef0ddc1bb6499dd12d6d9932bb
Size

250KB
MD5

901016dcd7fd4cb0520f34b76e526054
SHA1

70b59469af05b24d92b04914aadaa6ee4447c998
SHA256

afe5c948518a229e059da82fb51375548bc258ef0ddc1bb6499dd12d6d9932bb
SHA512

38da83c4704b8f38769c233c3d89aa7f30f7a270c93b4c7a824bb6c00c4243032af62929afc187bc62d434e2cab57db2ed99107a349b7a2ad1dd51abef941f99
SSDEEP

6144:Jaz+mTdhC7WZKARyhd9RoCitvfVv6pI+bAosZeivU5Ha:JZWUAkPo5tX8prAosZrO6

Score

N/A

Malware Config

Signatures

Files

afe5c948518a229e059da82fb51375548bc258ef0ddc1bb6499dd12d6d9932bb
.exe windows x86

c57f54e18a435a0585242f692d370cbc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FindWindowA
GetMessageExtraInfo
KillTimer
IsChild
GetClipboardData
PostQuitMessage
SetMenu
GetDialogBaseUnits
GetMessagePos
FindWindowExW
EmptyClipboard
OpenClipboard
ChildWindowFromPoint
IsDialogMessageA
GetScrollRange
DispatchMessageW
GetMenu
GetLastActivePopup
IsWindowVisible
GetUserObjectInformationA
GetKeyboardLayoutList
GetMenuItemID
ToAscii

ole32

CreateDataAdviseHolder
GetRunningObjectTable

advapi32

RegSetValueExW

gdi32

FillRgn

kernel32

GetStringTypeW
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetLocaleInfoA
HeapSize
IsValidCodePage
GetACP
GetCPInfo
LoadLibraryA
RtlUnwind
InitializeCriticalSectionAndSpinCount
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
GetOEMCP
VirtualFree
GetProcessAffinityMask
AssignProcessToJobObject
OpenProcess
LocalAlloc
GetCurrentProcessId
CopyFileTransactedW
SetCommMask
GlobalMemoryStatusEx
LoadLibraryExA
GetStringTypeA
GetLocaleInfoW
CreateFileMappingA
GetUserDefaultLCID
SetEnvironmentVariableA
GetTempFileNameW
GetLastError
HeapReAlloc
HeapAlloc
GetCommandLineA
GetStartupInfoA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapCreate
HeapFree
VirtualAlloc
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
TerminateProcess

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c57f54e18a435a0585242f692d370cbc

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

advapi32

gdi32

kernel32

Sections

.text Size: 34KB - Virtual size: 33KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 19KB - Virtual size: 346KB

.wdata Size: 2KB - Virtual size: 2KB

.rsrc Size: 185KB - Virtual size: 184KB

.text
Size: 34KB - Virtual size: 33KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 19KB - Virtual size: 346KB

.wdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 185KB - Virtual size: 184KB