cde6b07c93f03a7bd311baf294bbf3cea94b6d7cfbad62a350b3a926713197c6

Sharing

Copy URL

Twitter E-mail

General

Target

cde6b07c93f03a7bd311baf294bbf3cea94b6d7cfbad62a350b3a926713197c6
Size

190KB
MD5

3a0f5afdd6e768f6bee3443ef7fc2d58
SHA1

66a4a59f9dd0121481cff201d72ea1a9c5639c09
SHA256

cde6b07c93f03a7bd311baf294bbf3cea94b6d7cfbad62a350b3a926713197c6
SHA512

a0dadb4a60b9eb69ce888d5635eebca7256366ca803dfea5577c5235774892101caff9ee4473991cc1f6d353c360f84d9f30b0c377510fe58a9a29f0a7d2867a
SSDEEP

3072:axB2kwRxhsYnsYH8goqsdLhLtYasrLFN6AKRZpeI2tCcZzvKczfvEh4GCeeo4:a6DhsYEqs54LF7KR7eI28cZznz0h4G/

Score

N/A

Malware Config

Signatures

Files

cde6b07c93f03a7bd311baf294bbf3cea94b6d7cfbad62a350b3a926713197c6
.exe windows x86

4b01131fb03decff1e39e86bb288cf3f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
GetLastError
ReleaseMutex
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoW
SetUnhandledExceptionFilter
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
CloseHandle

user32

IsIconic
SetForegroundWindow
FindWindowW
MessageBoxW
ShowWindow

mfc42u

ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5710
ord5285
ord5303
ord3826
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord815
ord825
ord800
ord2810
ord540
ord4155
ord1131
ord3948
ord3820
ord3074
ord4075
ord4616
ord4418
ord3733
ord561
ord4269
ord4667
ord1569
ord4692
ord1165

msvcrt

_adjust_fdiv
__setusermatherr
_controlfp
_except_handler4_common
?terminate@@YAXXZ
_onexit
_amsg_exit
_initterm
_wcmdln
exit
_XcptFilter
_exit
_cexit
__wgetmainargs
__CxxFrameHandler3
_lock
__dllonexit
_unlock
??1type_info@@UAE@XZ
__set_app_type
__p__fmode
__p__commode

comctl32

InitCommonControlsEx

accelerometerdll

?FindAccelerometerDevice@@YGEPAPAX@Z
?GetAccelerometerProperty@@YGKPAXW4_ACCELEROMETER_PROPERTY_FLAGS@@0@Z
?CanSettingsChange@@YGKPAXPAE@Z
?SetAccelerometerProperty@@YGKPAXW4_ACCELEROMETER_PROPERTY_FLAGS@@0@Z

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 814B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.vmp0
Size: 160KB - Virtual size: 420KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4b01131fb03decff1e39e86bb288cf3f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

mfc42u

msvcrt

comctl32

accelerometerdll

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 21KB - Virtual size: 20KB

.reloc Size: 1024B - Virtual size: 814B

.vmp0 Size: 160KB - Virtual size: 420KB

We care about your privacy.

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 21KB - Virtual size: 20KB

.reloc
Size: 1024B - Virtual size: 814B

.vmp0
Size: 160KB - Virtual size: 420KB