f44e65de87eb95ec0f28c968fc9499352d019c57b1f01bc8dcd7a722ed9941c4

Sharing

Copy URL Twitter E-mail

General

Target

f44e65de87eb95ec0f28c968fc9499352d019c57b1f01bc8dcd7a722ed9941c4
Size

113KB
MD5

c3480f6b230e1b665d8c4b9d8255ed65
SHA1

b044b0d5ea4f3bb4a43a70901e4d97927e20ce03
SHA256

f44e65de87eb95ec0f28c968fc9499352d019c57b1f01bc8dcd7a722ed9941c4
SHA512

fa6e5e569c0f993d4c4458cb4cd9aa8e24911dfb76c15660ccbf2a8416a2601740f66afdf41bdf488a22254302a994b6dbcf5e9ae7fb6ac978a8ba8829aa3360
SSDEEP

3072:8aSDOmntvQ7EQmthDr1FpBe8vpnHy+UATBf2okxoC:8aA7SdKFpBe8v8hATB+o5

Score

N/A

Malware Config

Signatures

Files

f44e65de87eb95ec0f28c968fc9499352d019c57b1f01bc8dcd7a722ed9941c4
.exe windows x86

e484218a33ad334bc1be3d6d2018fc0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
GetCommandLineA
Sleep
SetEvent
LoadLibraryA
GlobalMemoryStatus
GlobalFree
GlobalAlloc
GetVersionExA
GetTickCount
GetProcAddress
GetModuleHandleA
GetLastError
WaitForSingleObject
GetCurrentDirectoryA
ExitThread
FreeLibrary
GetSystemTimeAsFileTime
GetLocalTime
SystemTimeToFileTime
GetSystemTime
HeapCompact
CloseHandle
VirtualFree
GetCurrentProcessId
ExitProcess
DeleteFileA
CreateThread
CreateMutexA
CreateFileA
CreateEventA
CopyFileA
VirtualAlloc
HeapAlloc
HeapCreate
HeapFree
HeapDestroy

msvcrt

calloc
malloc
printf
sqrt
memcpy
isdigit
atoi
strftime
_tzset
_gmtime64
_localtime64
_time64
strncat
memcmp
_snprintf
strstr
strlen
memmove
free
_except_handler3
memset
_errno

advapi32

CryptAcquireContextA
CryptImportKey
CryptSetKeyParam
CryptDecrypt
CryptEncrypt
CryptDestroyKey
CryptReleaseContext

user32

DrawTextA
GetDC

gdi32

GdiFlush
SetBkMode
SetTextColor
CreateFontA
Ellipse
LineTo
MoveToEx
DeleteObject
Rectangle
CreateHatchBrush
SetDIBColorTable
SelectObject
CreateDIBSection
CreateCompatibleDC

Sections

.text
Size: 72KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e484218a33ad334bc1be3d6d2018fc0d

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

user32

gdi32

Sections

.text Size: 72KB - Virtual size: 115KB

.rdata Size: 17KB - Virtual size: 16KB

.data Size: 3KB - Virtual size: 13KB

.tls Size: 1KB - Virtual size: 1KB

.sxdata Size: 512B - Virtual size: 512B

.text
Size: 72KB - Virtual size: 115KB

.rdata
Size: 17KB - Virtual size: 16KB

.data
Size: 3KB - Virtual size: 13KB

.tls
Size: 1KB - Virtual size: 1KB

.sxdata
Size: 512B - Virtual size: 512B