8715e98e96b13c10fc873161c56ca370ed5aee63bb7fb419939a6a7aba9eca42

Sharing

Copy URL Twitter E-mail

General

Target

8715e98e96b13c10fc873161c56ca370ed5aee63bb7fb419939a6a7aba9eca42
Size

14.8MB
MD5

72824cd05810dee784ee2df6185da13c
SHA1

6ef8b99808a893309c9e8439aa00b5cd386ec5c1
SHA256

8715e98e96b13c10fc873161c56ca370ed5aee63bb7fb419939a6a7aba9eca42
SHA512

2613e52568c2a2a1e830149368eb501685b124676ace99a842ad5ae10595acfb0b71e074d89c2037716dbda466f3c8035abd9b6fb2426b9248e99e3b865710ea
SSDEEP

393216:Zd3vY570AYNC67PsUn+1SWM5g9XWaI4WJndQH9Vc7:nAl0hCw7+xF9s8dVc7

Score

N/A

Malware Config

Signatures

Files

8715e98e96b13c10fc873161c56ca370ed5aee63bb7fb419939a6a7aba9eca42
.exe windows x86

68d079dc4fe003dddce64b2f7d8d87f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
WideCharToMultiByte
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
SetFilePointer
InitializeCriticalSection
VirtualQuery
InterlockedExchange
RtlUnwind
LoadLibraryA
TlsGetValue
TlsSetValue
VirtualProtect
GetSystemInfo
CloseHandle
ExitProcess
GetCommandLineW
Sleep
TerminateProcess
GetModuleHandleA
HeapSize
GetProcAddress
TlsFree
HeapFree
HeapAlloc
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
TlsAlloc
SetLastError

user32

CreateWindowExA
SystemParametersInfoA
RegisterClassA
SendMessageA
SendDlgItemMessageA
GetDlgItem
GetWindowPlacement
EndDialog
EnableWindow
PostQuitMessage
DispatchMessageA
GetWindowLongA
GetMessageA
CreateDialogParamA
ReleaseCapture
GetSystemMetrics
AppendMenuA
ShowCursor
CheckMenuItem
TrackPopupMenu
GetCursorPos
PeekMessageA
SetWindowTextA
GetClientRect
GetWindowTextLengthA
EndPaint
DefWindowProcA
UpdateWindow
FindWindowA
GetQueueStatus
GetForegroundWindow
GetCapture

gdi32

GetBkMode
SetBkMode
SelectPalette
RealizePalette
GetTextMetricsA
GetDeviceCaps
CreateSolidBrush
Rectangle
SetBkColor
TextOutA
CreateCompatibleDC
UpdateColors
SetTextAlign

shell32

CommandLineToArgvW

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 616KB - Virtual size: 619KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68d079dc4fe003dddce64b2f7d8d87f9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 2.0MB - Virtual size: 2.0MB

.data Size: 616KB - Virtual size: 619KB

.rsrc Size: 32KB - Virtual size: 30KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 2.0MB - Virtual size: 2.0MB

.data
Size: 616KB - Virtual size: 619KB

.rsrc
Size: 32KB - Virtual size: 30KB