a025ee3837f56ea3e6022da7e2b8d1d15f922632c03390a29bfb839cbadc5e43

Sharing

Copy URL Twitter E-mail

General

Target

a025ee3837f56ea3e6022da7e2b8d1d15f922632c03390a29bfb839cbadc5e43
Size

304KB
MD5

86e2837156eda667aba817a63224f11a
SHA1

955d54ca1b6b7a2a325054feee11f23b60e3bbfe
SHA256

a025ee3837f56ea3e6022da7e2b8d1d15f922632c03390a29bfb839cbadc5e43
SHA512

170bb124d05479f1467eec7d618231dabc7090fa7af3f9b4b408b998f24dce4d661e237581c75a1513e752a71446df3bf8f38db043d4f261510f2c73e3055aa0
SSDEEP

6144:rGMRzkGlUKQryU8ej6M17RZVmigfflZkORnPPB1lOfGio:rGMRkKQV+MtRcfbp51lOfW

Score

N/A

Malware Config

Signatures

Files

a025ee3837f56ea3e6022da7e2b8d1d15f922632c03390a29bfb839cbadc5e43
.exe windows x86

e4d6a852f1bf32d6436bb800a6cf3507

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
CreateEventA
CallNamedPipeA
OpenEventA
GetWindowsDirectoryA
lstrlenA
lstrcpyA
GetModuleHandleA
lstrcatA
SetEvent
FreeConsole
GlobalFree
CloseHandle
FreeLibraryAndExitThread
Sleep
CreateThread
HeapCreate
HeapDestroy
GetTickCount
InterlockedDecrement
InterlockedIncrement
GlobalAlloc
GetStdHandle
GetProcessHeap
GetStartupInfoA
SetConsoleScreenBufferSize
AllocConsole
lstrcmpiW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetCurrentProcess
IsBadWritePtr
GetModuleHandleW
lstrlenW
WriteFile
OutputDebugStringW
GetCommandLineA
WaitForSingleObject
VirtualProtect

user32

GetClientRect
GetSysColor
SendMessageW
SetFocus
SetCapture
FillRect
DrawFocusRect
BeginPaint
EndPaint
InvalidateRect
ReleaseDC
SetWindowLongW
GetWindowLongW
DefWindowProcW
LoadCursorW
RegisterClassW
wvsprintfW
GetDC
UnregisterClassW

advapi32

RegQueryValueExA
RegSetValueExA
CloseServiceHandle
InitializeSecurityDescriptor
StartServiceA
QueryServiceStatus
CreateServiceA
ChangeServiceConfigA
OpenServiceA
RegCloseKey
RegCreateKeyExA
OpenSCManagerA
SetSecurityDescriptorDacl

gdi32

FillRgn
CreatePen
CreatePolygonRgn
PtInRegion
GetDeviceCaps
CreateSolidBrush
SetBkColor
BitBlt
CreateCompatibleBitmap
SelectObject
DeleteObject
DeleteDC
LineTo
CreateCompatibleDC
MoveToEx

msvcrt

free
_controlfp
__set_app_type
__p__fmode
__p__commode
__setusermatherr
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_wcsnicmp
_adjust_fdiv
_initterm
iswctype
_except_handler3
memset
malloc

Sections

.text
Size: 288KB - Virtual size: 286KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4d6a852f1bf32d6436bb800a6cf3507

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

msvcrt

Sections

.text Size: 288KB - Virtual size: 286KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 266KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 288KB - Virtual size: 286KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 266KB

.rsrc
Size: 4KB - Virtual size: 1KB