b6a0c14551ac26c5025da3a232d2d9223ab7e99d1cb8470bf7aad4d2205cc10f

Sharing

Copy URL

Twitter E-mail

General

Target

b6a0c14551ac26c5025da3a232d2d9223ab7e99d1cb8470bf7aad4d2205cc10f
Size

220KB
MD5

0c95e0e0d710e27e8986bb65e2070f70
SHA1

e6cdc21208cd66047b60fc79afb6b3a493206f49
SHA256

b6a0c14551ac26c5025da3a232d2d9223ab7e99d1cb8470bf7aad4d2205cc10f
SHA512

dfde14a37a2d77228fe107a783ecd0afe46fbfdfcfde7ed63ff330eca5fd4681f46a7d5a20e720fb47835d029fdd18bb78be191f1a7f96ed6fa5e704f2e4fd06
SSDEEP

6144:qmgjCVPdDv9mvSMVyG4bVBSnkSLPNA4EtsirK:gjadDVqSMqUhjNNiO

Score

N/A

Malware Config

Signatures

Files

b6a0c14551ac26c5025da3a232d2d9223ab7e99d1cb8470bf7aad4d2205cc10f
.exe windows x86

ba026e3be9f275b48c552fff9a708bd7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
SetTextColor
DeleteDC
GetDeviceCaps
DeleteObject
SetBkColor
SetBkMode

kernel32

VirtualAlloc
GetCommandLineA
Sleep
VirtualFree
FindResourceW
HeapCreate
IsValidCodePage
TlsGetValue
CreateProcessA
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
CreateProcessW
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
HeapReAlloc
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
UnmapViewOfFile
LoadLibraryExW
GetLastError
LeaveCriticalSection
GetCurrentThreadId
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GlobalLock
WaitForMultipleObjects
DuplicateHandle
FindFirstFileW
CompareStringA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
SetEvent
DeleteFileA
LCMapStringW
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
GetVersionExW
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetVersion
GetLocaleInfoA
SetEndOfFile
GlobalAlloc
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
SetFileAttributesA
CreateThread
SetFilePointer
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
InitializeCriticalSection
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
GetEnvironmentVariableA
FormatMessageW
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
GetDiskFreeSpaceA
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
FreeEnvironmentStringsW
SetErrorMode
ExitProcess
CreateFileA
lstrcatA
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
FindNextFileA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
GetConsoleOutputCP
GetStdHandle

user32

SetCursor
CallWindowProcA
SendMessageA
InvalidateRect
IsWindowVisible
GetFocus
MessageBoxA
EndDialog
DrawTextA
SetForegroundWindow
TrackPopupMenu
LoadIconA
ScreenToClient
GetDlgItem
SetTimer
GetSubMenu
SetWindowTextA
SetWindowLongA
ReleaseCapture
PostMessageA
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
SetFocus
DispatchMessageA
CreateWindowExA
GetWindowLongA
IsWindowEnabled
TranslateMessage
SetWindowPos
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
DestroyWindow
GetClientRect
UnregisterClassA
ReleaseDC
GetCursorPos
GetDC
EndPaint
IsWindow
LoadBitmapA
PostQuitMessage
DestroyMenu
MapWindowPoints

Sections

egacswk
Size: 204KB - Virtual size: 201KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ba026e3be9f275b48c552fff9a708bd7

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Sections

egacswk Size: 204KB - Virtual size: 201KB

.rdata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 592B

egacswk
Size: 204KB - Virtual size: 201KB

.rdata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 592B