2bd21abeba54a1abd4c7c4a56980814b5aa90d06e4a0cee84454fd11606050ea

Sharing

Copy URL

Twitter E-mail

General

Target

2bd21abeba54a1abd4c7c4a56980814b5aa90d06e4a0cee84454fd11606050ea
Size

60KB
MD5

31235e457ee1570ade4e4342784e5a3e
SHA1

f6f635d715ecb87aad591f7f5961c3443d78506f
SHA256

2bd21abeba54a1abd4c7c4a56980814b5aa90d06e4a0cee84454fd11606050ea
SHA512

07593d7eb4ce374ad2c03bf6c0b448c92cd35fccb23ee47ef2ca734b885a1e1098789d1ca1e49ccb608b92d589b9b175e9dedb44d2fae076c2b9338efcee34ae
SSDEEP

768:YZyhL9njT6cEjjjbQPl2ehHxIW0G/58URUEG8DTq1iS:YZkL9njTR8j62ehR8G/58URUYu3

Score

N/A

Malware Config

Signatures

Files

2bd21abeba54a1abd4c7c4a56980814b5aa90d06e4a0cee84454fd11606050ea
.exe windows x86

383fd11ecaab256f17c224f4d545fe40

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginDeferWindowPos
DeleteMenu
EndDeferWindowPos
GetClassInfoA
IsRectEmpty
GetKeyboardLayoutList

msi

ord229

kernel32

SetUnhandledExceptionFilter
GetStringTypeA
LCMapStringW
LCMapStringA
GetProcAddress
IsBadWritePtr
VirtualAlloc
HeapAlloc
GetACP
GetVersionExA
GetTickCount
CreateMutexA
GetPriorityClass
GetCurrentThread
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentStrings
lstrcmpA
FindClose
TlsFree
InterlockedExchange
HeapSize
CreateFileA
SetHandleCount
WaitForSingleObjectEx
GetCommandLineW
GetModuleFileNameA
GetModuleHandleW
LoadLibraryW
TryEnterCriticalSection
EnterCriticalSection
GetCPInfo
HeapFree
LoadLibraryA
DeleteCriticalSection
FreeLibraryAndExitThread
GetCurrentProcess
ReadFile
GetOEMCP
LoadResource
InitializeCriticalSectionAndSpinCount
ExitProcess
GetStringTypeW
MultiByteToWideChar
WaitForSingleObject
HeapCreate
HeapReAlloc
FlushFileBuffers
GetCurrentProcessId
GetProcessVersion
GetStdHandle
CreateEventA
CreateSemaphoreA
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
HeapDestroy
VirtualFree
RtlUnwind
WriteFile
InitializeCriticalSection
LeaveCriticalSection
FatalAppExitA

Sections

.text
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

383fd11ecaab256f17c224f4d545fe40

Headers

File Characteristics

Imports

user32

msi

kernel32

Sections

.text Size: 20KB - Virtual size: 18KB

.code Size: 4KB - Virtual size: 1KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 20KB - Virtual size: 54KB

.rsrc Size: 4KB - Virtual size: 752B

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 18KB

.code
Size: 4KB - Virtual size: 1KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 20KB - Virtual size: 54KB

.rsrc
Size: 4KB - Virtual size: 752B

.reloc
Size: 4KB - Virtual size: 1KB