7409b7734cef6b3a0cae541e6fdde8b582bdc2bc478ddc685cb578dd34c7b1be

Sharing

Copy URL Twitter E-mail

General

Target

7409b7734cef6b3a0cae541e6fdde8b582bdc2bc478ddc685cb578dd34c7b1be
Size

89KB
MD5

48514b0ba1e766197ba04b922133e765
SHA1

dc970f7e9b96069f5047dcf2e9407cbdfcc144f0
SHA256

7409b7734cef6b3a0cae541e6fdde8b582bdc2bc478ddc685cb578dd34c7b1be
SHA512

e9a9e98aeec0deb1ceb5ca714209161d755e356393ad02761b5b7ad9ed5a039bb26809324c38fa246b049dbd70555fbb2ca2098ece5ec314c9db68b78b2ea26a
SSDEEP

1536:NoWmicCTDHBUVG/7206oeXVq910r9nTg1gPfuIJoI:ECfOa7207elBM1gPfHJ

Score

N/A

Malware Config

Signatures

Files

7409b7734cef6b3a0cae541e6fdde8b582bdc2bc478ddc685cb578dd34c7b1be
.exe windows x86

ee47e05430554b64112645cf7847420e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
FindFirstFileA
FindClose
WriteFile
ReadFile
GetModuleFileNameA
WaitForSingleObject
CreateProcessA
GetCurrentProcess
LoadLibraryA
GetProcAddress
FreeLibrary
GetLastError
GlobalAlloc
GlobalUnlock
FindNextFileA
CreateFileA
GetTimeZoneInformation
GetSystemTime
CompareStringA
SetEndOfFile
CompareStringW
SetStdHandle
SetFilePointer
GetStringTypeA
IsBadCodePtr
GetStringTypeW
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
FlushFileBuffers
VirtualFree
VirtualAlloc
HeapDestroy
GetFileType
HeapCreate
SetHandleCount
GetEnvironmentStringsW
GetStdHandle
CloseHandle
GetLocalTime
DeleteFileA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetEnvironmentStrings
GetOEMCP
GetACP
UnhandledExceptionFilter
LCMapStringA
GetCPInfo
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
SetEnvironmentVariableA
SetCurrentDirectoryA
LCMapStringW
MultiByteToWideChar
GetVersion
WideCharToMultiByte
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapFree
HeapReAlloc
HeapSize

user32

InvalidateRect
GetClientRect
SetForegroundWindow
ShowWindow
DestroyWindow
CreateDialogParamA
PostQuitMessage
UpdateWindow
SendMessageA
GetDlgItem
EndPaint
ReleaseDC
GetDC
MessageBoxA
BeginPaint
SetWindowTextA
LoadStringA
ExitWindowsEx
GetMessageA
DispatchMessageA
PeekMessageA
TranslateMessage
EndDialog
DialogBoxParamA
SendDlgItemMessageA

gdi32

CreateDIBitmap
RealizePalette
SelectPalette
CreatePalette
DeleteDC
StretchBlt
SetStretchBltMode
GetObjectA
SelectObject
CreateCompatibleDC
DeleteObject

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

shell32

ShellExecuteA

comctl32

ord17

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee47e05430554b64112645cf7847420e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 17KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 17KB

.rsrc
Size: 14KB - Virtual size: 13KB