eae0987b8494a8d8cf145700509ef1d2313655aadaac9ca26539db40729e08fd

Sharing

Copy URL

Twitter E-mail

General

Target

eae0987b8494a8d8cf145700509ef1d2313655aadaac9ca26539db40729e08fd
Size

53KB
MD5

8ed05286710efd716fa685c7f3684419
SHA1

f9133aceefa636cba5b8caa43f9a652e9ddd21ca
SHA256

eae0987b8494a8d8cf145700509ef1d2313655aadaac9ca26539db40729e08fd
SHA512

2d67e05cf5f1d9033353406a12e91a767505aa86a066f93bf39aee87b80c155e9429bef3bbe6d830d55661156cf5dc7a23259de2c351e9958045cf151457dadd
SSDEEP

768:fYHCKlzd3fV25y4OETluQoQIOK+hxHVAzzkNSArhRiPeJ2lfO46GEGCy9H:Q/d4I4DTluQbnXHbrhRiuc9h

Score

N/A

Malware Config

Signatures

Files

eae0987b8494a8d8cf145700509ef1d2313655aadaac9ca26539db40729e08fd
.exe windows x86

60e26a20a24ad94b251d313710efe0e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PeekMessageA
GetDlgItem
OpenDesktopA
ToUnicode
CharLowerBuffA
GetForegroundWindow
CloseDesktop
GetClipboardData
FindWindowExW
CloseWindowStation
GetDlgItemTextW
GetKeyState
DispatchMessageW
GetDlgItemTextA
GetMessageA
SetProcessWindowStation
GetCursorPos
PeekMessageW
SetThreadDesktop
LoadCursorW
OpenWindowStationA
SendMessageW
GetMessageW
GetWindowTextW
GetKeyboardState
ExitWindowsEx
GetWindowThreadProcessId
GetIconInfo
DrawIcon
EndDialog
GetClassNameW
MsgWaitForMultipleObjects
GetWindowLongW

kernel32

WaitForSingleObject
CreateFileMappingW
GetCurrentThreadId
GetLastError
CreateThread
IsBadReadPtr
HeapFree
lstrcatA
CopyFileW
WideCharToMultiByte
GetTimeZoneInformation
UnmapViewOfFile
GlobalUnlock
OpenMutexW
GetLogicalDrives
GetModuleFileNameA
MapViewOfFile
lstrcatW
GetProcessTimes
SetEndOfFile
SetFilePointer
GetModuleFileNameW
GetTempFileNameW
SetFileTime
WriteFile
FindClose
InitializeCriticalSection
OpenProcess
lstrcmpiW
GetFileTime
MultiByteToWideChar
CreateDirectoryW
ReadFile
GetSystemTime
CreateMutexW
GetVersionExW
SetLastError
GlobalLock
GetDriveTypeW
GetFileSizeEx
GetThreadPriority
Sleep
GetExitCodeProcess
lstrcpyA
SetEvent
GetSystemTimeAsFileTime
WriteProcessMemory
CreateProcessW
ReleaseMutex
lstrcmpiA
lstrlenA
CreateFileW
MoveFileExW
lstrcpynW
LeaveCriticalSection
GetCurrentProcessId
SystemTimeToFileTime

Sections

.xml
Size: 18KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fkv
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dsd
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zch
Size: 26KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60e26a20a24ad94b251d313710efe0e5

Headers

File Characteristics

Imports

user32

kernel32

Sections

.xml Size: 18KB - Virtual size: 39KB

.fkv Size: 5KB - Virtual size: 10KB

.dsd Size: 1024B - Virtual size: 1KB

.zch Size: 26KB - Virtual size: 132KB

.rsrc Size: 1KB - Virtual size: 4KB

.xml
Size: 18KB - Virtual size: 39KB

.fkv
Size: 5KB - Virtual size: 10KB

.dsd
Size: 1024B - Virtual size: 1KB

.zch
Size: 26KB - Virtual size: 132KB

.rsrc
Size: 1KB - Virtual size: 4KB