a54e799aa84b06242516c28654392d0fe705b85de29b446a4a146b85182152eb

Sharing

Copy URL

Twitter E-mail

General

Target

a54e799aa84b06242516c28654392d0fe705b85de29b446a4a146b85182152eb
Size

20KB
MD5

72df5e37eeab8b28d849b18c0b03f814
SHA1

b8118cb86fa4d36506dd60ca532e44f3421afd45
SHA256

a54e799aa84b06242516c28654392d0fe705b85de29b446a4a146b85182152eb
SHA512

7975711d1bc31fc3ebd1b6202368a052ccae8d672915665cd5cb3558eefd36a09718804e45fd7d44ac893d40512d506a735d3be157a27dbdf08732203a277644
SSDEEP

384:sPCgUtd+rl0x+nnX4ljly8ozvLks6EdGvuqPCan3/AGTyjLvIbTmuKA:3tX0l0xKkOvL1tdGmOC0YR3vIbKuKA

Score

N/A

Malware Config

Signatures

Files

a54e799aa84b06242516c28654392d0fe705b85de29b446a4a146b85182152eb
.exe windows x86

3a2c93c03dbcc17efcee0c80b6719359

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
GetConsoleAliasExesLengthA
GetStartupInfoA
GetComputerNameW
GetConsoleMode
CmdBatNotification
IsDBCSLeadByteEx
FlushInstructionCache
BackupSeek
GetLastError
GetConsoleAliasesA
lstrcmpW
IsValidCodePage
HeapValidate
RegisterWowExec
LCMapStringA
DefineDosDeviceW
MoveFileWithProgressA
GetSystemTime
GetModuleHandleA
GetConsoleTitleA
Sleep
GetCommandLineA
TerminateProcess
GetCommTimeouts
GetConsoleTitleW
GetVolumeInformationA
ReadConsoleInputW
GetACP
GlobalGetAtomNameW
CreateHardLinkW
VirtualFree
VirtualAlloc
SwitchToFiber
GetDriveTypeA
WriteConsoleOutputCharacterW
SetConsoleTitleA
LocalShrink
ExitProcess
GetComputerNameA
GetStringTypeA
ClearCommBreak
ConsoleMenuControl
lstrcpynA
CreateFiber
CreateWaitableTimerW
InterlockedDecrement

msvcrt

tmpfile
_execlpe
_nextafter
_spawnvpe
_Getmonths
_kbhit
_fpieee_flt
_wspawnlpe
_seh_longjmp_unwind
towupper
putchar
calloc
_wperror
_winminor
__p___wargv
_i64toa
_close
_purecall
_finite
__p__mbcasemap
_wexecvpe
clock
_lseeki64
_Getdays
_ismbbalnum
setvbuf
_ltow
strcat
wcscat
_setsystime
_itoa
_setmode
swscanf

user32

DefFrameProcW
AnyPopup
EnumWindowStationsA
EditWndProc
BroadcastSystemMessageA
GetDlgItem
BroadcastSystemMessageW
EnumDisplaySettingsExW
DestroyIcon
ChildWindowFromPoint
ChangeDisplaySettingsExW
CopyAcceleratorTableA
DdeAbandonTransaction

gdi32

CreateBrushIndirect
GetRandomRgn
PtVisible
GetViewportOrgEx
GdiPlayDCScript
GdiGetBatchLimit
CreateColorSpaceW
AngleArc
ArcTo
DeviceCapabilitiesExA
GetMetaFileA
GetColorSpace
Polygon
GetBitmapBits
CreateFontIndirectA

Sections

.text
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.uwroc
Size: 260KB - Virtual size: 636KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mktm
Size: 155KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a2c93c03dbcc17efcee0c80b6719359

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 7KB - Virtual size: 8KB

.uwroc Size: 260KB - Virtual size: 636KB

.mktm Size: 155KB - Virtual size: 326KB

.reloc Size: 1024B - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 8KB

.uwroc
Size: 260KB - Virtual size: 636KB

.mktm
Size: 155KB - Virtual size: 326KB

.reloc
Size: 1024B - Virtual size: 1KB