8ea57bd9e22dfc8ea58e6f1de37c1fbe9c225f34b53132546ae7f6b2df501f6d

Sharing

Copy URL Twitter E-mail

General

Target

8ea57bd9e22dfc8ea58e6f1de37c1fbe9c225f34b53132546ae7f6b2df501f6d
Size

394KB
MD5

ea4ee19a0035da948c5b367976ba75f5
SHA1

a8ddc5390c4e6ace11e36391f2b880fabd05586e
SHA256

8ea57bd9e22dfc8ea58e6f1de37c1fbe9c225f34b53132546ae7f6b2df501f6d
SHA512

46d7ca35afffc98471c100ce6c5478ba4099129fd4a7f95d3e4abc9ab19077e525136cfbf5f92a7a24cfd07ea8ec32526f1baca934c07d52ad131d0f5febf726
SSDEEP

12288:uxSTGJyUwnFBRKqpIt6vWHXmX5c6jhL+:1TGJAFrFOt6JX5c6

Score

N/A

Malware Config

Signatures

Files

8ea57bd9e22dfc8ea58e6f1de37c1fbe9c225f34b53132546ae7f6b2df501f6d
.exe windows x86

abb8fb33602053c5e2a6a154501fcd2e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegFlushKey
RegQueryValueExA
RegQueryValueExW
RegCreateKeyW

msvcrt

_acmdln
time
_c_exit
srand
__set_app_type
_adjust_fdiv
exit
_except_handler3
rand
__p__commode
_cexit
__p__fmode
_XcptFilter

user32

DialogBoxParamW
LoadCursorW
CreateWindowExW
SetCursor
WinHelpW
GetMessageW
GetWindowDC
GetSystemMetrics
GetDlgItem
LoadBitmapW
TranslateMessage
TranslateAcceleratorW
SetWindowTextW
ReleaseCapture
EndPaint
SetWindowPos
SystemParametersInfoW
LoadAcceleratorsW
MessageBeep
SendMessageW
EnableMenuItem

kernel32

CallNamedPipeA
IsValidLocale
WaitForSingleObject
DecodePointer
GetLocaleInfoA
ExitThread
GetThreadPriority
ConvertDefaultLocale
GetSystemTimeAsFileTime
SetFilePointer
TransactNamedPipe
SetThreadLocale
InterlockedExchangeAdd
ReadFileScatter
SwitchToThread
SetThreadUILanguage
lstrcatW
GetCurrentDirectoryA
SetFilePointerEx
VirtualAllocEx
PeekNamedPipe
lstrcmpA
CopyFileExA
lstrcpyW
GetCurrentProcess
ConnectNamedPipe
PostQueuedCompletionStatus
GetThreadLocale
ResumeThread
RegisterWaitForSingleObject
CreateIoCompletionPort
LeaveCriticalSection
GetTickCount
GetUserDefaultLangID
InterlockedFlushSList
RtlFillMemory
GetNamedPipeHandleStateA
FileTimeToLocalFileTime
lstrcpynW
HeapFree
GetQueuedCompletionStatus
EncodePointer
CreateMutexA
InterlockedPushEntrySList
EnumSystemLocalesA
OpenFileMappingA
HeapDestroy
GetThreadTimes
HeapLock
InterlockedDecrement
WaitForSingleObject
MapViewOfFile
HeapCreate
InterlockedPopEntrySList
WriteFileGather
lstrcpynA
WaitNamedPipeA
DosDateTimeToFileTime
GetThreadContext
GetUserDefaultUILanguage
CreateFileA
GetCurrentThreadId
GetSystemTime
HeapAlloc
GetSystemTimeAdjustment
MapViewOfFileEx
GetFileAttributesExA
CreateNamedPipeA
SetThreadExecutionState
CreateFileMappingA
InitializeCriticalSection
EnterCriticalSection
WaitForSingleObjectEx
SetThreadPriority
SetLastError
GetFileTime
GetSystemDefaultLCID
WriteFile
SetEnvironmentVariableA
CreateThread
CompareStringA
DisconnectNamedPipe
InterlockedCompareExchange
GetNamedPipeInfo
WriteFileEx
UnmapViewOfFile
SetCurrentDirectoryA
InterlockedIncrement
OpenThread
ReadFile
GetSystemDefaultLangID

Sections

.text
Size: 233KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abb8fb33602053c5e2a6a154501fcd2e

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

msvcrt

user32

kernel32

Sections

.text Size: 233KB - Virtual size: 233KB

.data Size: 150KB - Virtual size: 150KB

.rsrc Size: 9KB - Virtual size: 360KB

.text
Size: 233KB - Virtual size: 233KB

.data
Size: 150KB - Virtual size: 150KB

.rsrc
Size: 9KB - Virtual size: 360KB