c45971a03ab9ac5fa6cafae4820a4cea6cdecd6186365bb6b1944a0e81904ea9

Sharing

Copy URL Twitter E-mail

General

Target

c45971a03ab9ac5fa6cafae4820a4cea6cdecd6186365bb6b1944a0e81904ea9
Size

259KB
MD5

3d1ffe5ea4dbf130345facbda24263a0
SHA1

6f7bf7de537e3fea4a40e339c492349f065f6faa
SHA256

c45971a03ab9ac5fa6cafae4820a4cea6cdecd6186365bb6b1944a0e81904ea9
SHA512

7c39c86d1732a4fe019d079432a14a4a86b5055990102e18620834d69543f157cae6809decddf10f1ead08192d2e52685ea0dceb7a677ba00227db03e49c411b
SSDEEP

6144:CLr8nfUijJLdXAWzNG428KNwo3QjO3lSW4AbDRD:ZnMi5dXlp/oiO38i5D

Score

N/A

Malware Config

Signatures

Files

c45971a03ab9ac5fa6cafae4820a4cea6cdecd6186365bb6b1944a0e81904ea9
.exe windows x86

c5399fa42e50b52dc1d8e5304c3be931

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetProcAddress
GetConsoleScreenBufferInfo
LockResource
CloseHandle
FileTimeToLocalFileTime
LCMapStringW
GetStringTypeW
ReadFile
GetProcessHeap
SetEndOfFile
IsValidCodePage
GetStdHandle
LoadResource
GetCPInfo
HeapReAlloc
LoadLibraryW
SetFilePointer
MultiByteToWideChar
WriteConsoleW
CreateFileW
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetModuleFileNameW
FileTimeToSystemTime
GetFileAttributesW
GetTimeFormatW
HeapCreate
SizeofResource
InitializeCriticalSection
IsBadReadPtr
GetModuleHandleW
GetComputerNameW
SetConsoleScreenBufferSize
GetLogicalDriveStringsW
GetCurrentProcess
GetOEMCP
HeapAlloc
GetCurrentThreadId
SetLastError
FindResourceW
AllocConsole
GetACP
FindResourceA
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetEnvironmentStringsW
InterlockedIncrement
InterlockedDecrement
Sleep
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
EncodePointer
DecodePointer
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FlushFileBuffers
IsProcessorFeaturePresent
ExitProcess
SetHandleCount
GetModuleFileNameA
FreeEnvironmentStringsW

user32

MoveWindow
GetDialogBaseUnits
LoadCursorA
FindWindowA
UpdateWindow
SetDlgItemTextW
SetCursor
GetWindowRect
FillRect
DrawTextW
LoadCursorW
EnumWindowStationsA
GetDC
ChildWindowFromPoint
GetForegroundWindow
InvalidateRect
GetAncestor
ReleaseDC
GetDlgItem
EndDialog
GetSysColor
SetWindowPos
ShowWindow
GetSysColorBrush
IsWindowVisible

gdi32

DeleteDC
Polygon
CreateFontIndirectW
GetDeviceCaps
GetCurrentObject
SetDCBrushColor
SetPixel
SetBkMode
SelectObject
SetDCPenColor
GetObjectW
Polyline
GetStockObject
SetTextColor

winspool.drv

ClosePrinter

ws2_32

WSACleanup

version

GetFileVersionInfoSizeW
GetFileVersionInfoW

Sections

.text
Size: 183KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c5399fa42e50b52dc1d8e5304c3be931

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

ws2_32

version

Sections

.text Size: 183KB - Virtual size: 182KB

.rdata Size: 56KB - Virtual size: 56KB

.data Size: 6KB - Virtual size: 21KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 183KB - Virtual size: 182KB

.rdata
Size: 56KB - Virtual size: 56KB

.data
Size: 6KB - Virtual size: 21KB

.rsrc
Size: 13KB - Virtual size: 12KB