4b755d1574df512477330cb6f8e1449d27b9f6b137c58bbdd976c43264507b18

Sharing

Copy URL Twitter E-mail

General

Target

4b755d1574df512477330cb6f8e1449d27b9f6b137c58bbdd976c43264507b18
Size

223KB
MD5

4da25e1bf4dec646824a4b17c68228c0
SHA1

7e856a9edaed19d351bb6a96d5ecc0355febc53e
SHA256

4b755d1574df512477330cb6f8e1449d27b9f6b137c58bbdd976c43264507b18
SHA512

404aaa7256578ce82037d610d70aef083e8547b15135df8f7e29fe61847de20ade0ce592366fab913920a1ce31fcb6387eda6aa21aef1577c3c382efa3b4ffdb
SSDEEP

3072:veU6hRzaFwmGstlYnqv3Z0c0ov7cg789uK77ncoRi:vN6hRePbPvL789u2c

Score

N/A

Malware Config

Signatures

Files

4b755d1574df512477330cb6f8e1449d27b9f6b137c58bbdd976c43264507b18
.exe windows x86

e5ff9be501bf34a564e60d9edc1f2d35

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
lstrcatA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetStartupInfoA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
GetModuleFileNameA
FreeLibrary
LoadLibraryA
QueryPerformanceCounter
lstrlenA
lstrcmpiA
lstrcpyA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryW
GetProcAddress
ReadFile
GetStartupInfoW

user32

GetSysColor
LoadCursorA

gdi32

GetStockObject

msvcrt

towlower
wcschr
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_c_exit
_except_handler3

advapi32

RegQueryValueExW

Sections

.text2
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata13
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata12
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata11
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata10
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata9
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata8
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata7
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata6
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata5
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata4
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata3
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata2
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5ff9be501bf34a564e60d9edc1f2d35

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

advapi32

Sections

.text2 Size: 512B - Virtual size: 112B

.text Size: 124KB - Virtual size: 123KB

.data Size: 1KB - Virtual size: 1KB

.rdata13 Size: 512B - Virtual size: 4B

.rdata12 Size: 512B - Virtual size: 4B

.rdata11 Size: 512B - Virtual size: 4B

.rdata10 Size: 512B - Virtual size: 4B

.rdata9 Size: 512B - Virtual size: 4B

.rdata8 Size: 512B - Virtual size: 4B

.rdata7 Size: 512B - Virtual size: 4B

.rdata6 Size: 512B - Virtual size: 4B

.rdata5 Size: 512B - Virtual size: 4B

.rdata4 Size: 512B - Virtual size: 8B

.rdata3 Size: 512B - Virtual size: 8B

.rdata2 Size: 512B - Virtual size: 8B

.rdata Size: 512B - Virtual size: 112B

.rsrc Size: 88KB - Virtual size: 87KB

.reloc Size: 1024B - Virtual size: 536B

.text2
Size: 512B - Virtual size: 112B

.text
Size: 124KB - Virtual size: 123KB

.data
Size: 1KB - Virtual size: 1KB

.rdata13
Size: 512B - Virtual size: 4B

.rdata12
Size: 512B - Virtual size: 4B

.rdata11
Size: 512B - Virtual size: 4B

.rdata10
Size: 512B - Virtual size: 4B

.rdata9
Size: 512B - Virtual size: 4B

.rdata8
Size: 512B - Virtual size: 4B

.rdata7
Size: 512B - Virtual size: 4B

.rdata6
Size: 512B - Virtual size: 4B

.rdata5
Size: 512B - Virtual size: 4B

.rdata4
Size: 512B - Virtual size: 8B

.rdata3
Size: 512B - Virtual size: 8B

.rdata2
Size: 512B - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 112B

.rsrc
Size: 88KB - Virtual size: 87KB

.reloc
Size: 1024B - Virtual size: 536B