a534892ba138458913bfd4e3e8d6e70a6fd048604b2e26330cca77a9ecfbe15e

Sharing

Copy URL

Twitter E-mail

General

Target

a534892ba138458913bfd4e3e8d6e70a6fd048604b2e26330cca77a9ecfbe15e
Size

158KB
MD5

19ec8f8b6b2b8cac993605f81dc89699
SHA1

465c5d442e21f2dffe32ba9d0a67743899ea6765
SHA256

a534892ba138458913bfd4e3e8d6e70a6fd048604b2e26330cca77a9ecfbe15e
SHA512

7bbcb12e670f0731562500267a28b9790309e24b3784625d74eb7bff6a0e84dddcf842f192a4f17fbc225a33e314e1a11ae7a27a6f61eaa87385dd76dac677fc
SSDEEP

3072:8t78tfnBFAXTVw6KyIXjUt1yetIzC64tEfrgm:GkFAjOqI+P+zC64ufrg

Score

N/A

Malware Config

Signatures

Files

a534892ba138458913bfd4e3e8d6e70a6fd048604b2e26330cca77a9ecfbe15e
.exe windows x86

ea224a6bad167a22b73d3d1297d7dadd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateProcessW
DeleteFileW
Sleep
GetCurrentThreadId
GetTickCount
GetCurrentThread
GetVersionExW
TerminateProcess
CreatePipe
PeekNamedPipe
GetShortPathNameW
GetEnvironmentVariableW
WinExec
SetUnhandledExceptionFilter
SetErrorMode
DuplicateHandle
GetModuleFileNameA
OpenMutexA
CreateMutexW
ReleaseMutex
RemoveDirectoryW
MoveFileW
CreateEventW
GetTempFileNameA
GetVersion
LocalAlloc
LocalFree
DeviceIoControl
WaitForSingleObject
GetCurrentProcess
GetTempPathW
CopyFileW
CreateDirectoryA
ResetEvent
WaitForMultipleObjects
VirtualFree
VirtualProtect
VirtualAlloc
LoadLibraryW
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
MultiByteToWideChar
HeapSize
RtlUnwind
HeapReAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSection
LoadLibraryA
IsDebuggerPresent
UnhandledExceptionFilter
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
HeapCreate
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapDestroy

user32

GetForegroundWindow
GetDlgItemInt
SetDlgItemInt
FrameRect
IsClipboardFormatAvailable
SetForegroundWindow
TrackPopupMenu
GetCursorPos
RegisterClassExA
GetClassInfoExA
GetSysColorBrush
GetActiveWindow
AppendMenuA
CallWindowProcA
GetMessageA
GetWindowRect
GetSystemMetrics
ShowScrollBar
GetClientRect
SendMessageW
PostMessageW
DefWindowProcA
GetWindowThreadProcessId
CheckRadioButton
EndDialog
SendDlgItemMessageW
OffsetRect
LoadImageA
DrawIcon

ole32

CLSIDFromString
CoCreateInstance
CoInitialize
CoUninitialize
StgCreateDocfile
OleSetContainedObject

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea224a6bad167a22b73d3d1297d7dadd

Headers

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 98KB - Virtual size: 97KB

.data Size: 57KB - Virtual size: 73KB

.ddata Size: 1024B - Virtual size: 520B

.rsrc Size: 1024B - Virtual size: 808B

.text
Size: 98KB - Virtual size: 97KB

.data
Size: 57KB - Virtual size: 73KB

.ddata
Size: 1024B - Virtual size: 520B

.rsrc
Size: 1024B - Virtual size: 808B