b49ce3bb606460fe32448a7e218b75bd7e616b45d56d67325176af3a802cb47f

Sharing

Copy URL Twitter E-mail

General

Target

b49ce3bb606460fe32448a7e218b75bd7e616b45d56d67325176af3a802cb47f
Size

164KB
MD5

aee7ccf6ae9b40409860d0de848ef148
SHA1

56b1809dcb3a13918cec84de45d281c828e5ae27
SHA256

b49ce3bb606460fe32448a7e218b75bd7e616b45d56d67325176af3a802cb47f
SHA512

d7dfcb95a24dc482628ab4bfed53b55ed6f240e573a748ad5a20cb3819230b564a0a4d3800b673570617effe4ec31bd56bcb70019dbbabc51f9268ed8baa11ce
SSDEEP

3072:NU9ZXYMBPffrJtzNopZIJ8pwx9c8H9BhJJbuK4gT:NmZoCXU8H3JwgT

Score

N/A

Malware Config

Signatures

Files

b49ce3bb606460fe32448a7e218b75bd7e616b45d56d67325176af3a802cb47f
.exe windows x86

ce5449766b3ccf67d79294e9d5b90ba3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

lz32

LZCopy
LZOpenFileA
LZClose

setupapi

SetupCopyOEMInfA
SetupFindFirstLineA
SetupOpenInfFileA
SetupCloseInfFile
SetupFindNextLine
SetupGetLineTextA
SetupGetStringFieldA
SetupGetTargetPathA

kernel32

CompareStringA
CompareStringW
SetEnvironmentVariableA
SetStdHandle
IsBadReadPtr
CreateFileA
GetModuleFileNameA
CloseHandle
WriteFile
GetFileInformationByHandle
DeleteFileA
CompareFileTime
SetFileAttributesA
GetFileAttributesA
GetTempFileNameA
CreateDirectoryA
FreeLibrary
WritePrivateProfileStringA
GetWindowsDirectoryA
GetShortPathNameA
GetProcAddress
LoadLibraryA
MoveFileA
GetVersionExA
GetSystemDirectoryA
WaitForSingleObject
CreateThread
GetPrivateProfileStringA
Sleep
GetCurrentProcess
GetLastError
GetCurrentThread
MulDiv
GetExitCodeThread
TerminateThread
SetEvent
CreateEventA
GetSystemDefaultLangID
GetUserDefaultLangID
CopyFileA
CreateProcessA
OpenEventA
FreeResource
WideCharToMultiByte
LockResource
LoadResource
FindResourceExA
LocalAlloc
InterlockedExchange
RaiseException
TerminateProcess
GetTimeZoneInformation
SetFilePointer
GetStringTypeW
GetStringTypeA
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
IsBadCodePtr
GetEnvironmentVariableA
FlushFileBuffers
GetFileType
GetStdHandle
SetHandleCount
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
FileTimeToSystemTime
GetCurrentDirectoryA
GetFullPathNameA
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
HeapFree
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
FindClose

user32

MoveWindow
DispatchMessageA
KillTimer
EndDialog
FindWindowExA
SetWindowTextA
SendMessageA
SetTimer
LoadStringA
RedrawWindow
PostMessageA
DefWindowProcA
PostQuitMessage
FindWindowA
BeginPaint
GetClientRect
DrawTextA
GetDesktopWindow
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
GetWindowInfo
DialogBoxParamA
MessageBoxA
GetMessageA
TranslateMessage
DestroyWindow
SetCursor
CreateWindowExA
GetWindowRect
EndPaint

gdi32

GetDeviceCaps
CreateFontA
DeleteObject
Rectangle
GetStockObject
GetObjectA
CreatePen
SelectObject
CreateSolidBrush
SetTextColor
GetTextMetricsA

shell32

ShellExecuteA

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ce5449766b3ccf67d79294e9d5b90ba3

Headers

File Characteristics

Imports

version

lz32

setupapi

kernel32

user32

gdi32

shell32

Sections

.text Size: 56KB - Virtual size: 54KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 16KB - Virtual size: 18KB

.rsrc Size: 80KB - Virtual size: 80KB

.text
Size: 56KB - Virtual size: 54KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 16KB - Virtual size: 18KB

.rsrc
Size: 80KB - Virtual size: 80KB