c645f671726bf5fe15d6fd551be62a6071cdae485342db19fdca519feb318c4a

Sharing

Copy URL Twitter E-mail

General

Target

c645f671726bf5fe15d6fd551be62a6071cdae485342db19fdca519feb318c4a
Size

451KB
MD5

e51a18fd2ac354067941ce0cbe7fba6e
SHA1

1c74f860adb121a09c1cc7f911c4a4d811f423d3
SHA256

c645f671726bf5fe15d6fd551be62a6071cdae485342db19fdca519feb318c4a
SHA512

b693fc8a463bdb8e8964ea84f827b6df489962d69ce7a9eec92abbebf5545bcd90f676b4393bdb7eb4638b8ed02f8f6cde78b6406d364138e3bdd88388bb52e9
SSDEEP

6144:w/7wocB2ymTJEmmhwWx9QvC+Q0wHj/g9LS6YvRh6vdGv6bVYFtvePgM1Xx4TASI:HlUiw8sCpjIJdYn3SaFtvi1

Score

N/A

Malware Config

Signatures

Files

c645f671726bf5fe15d6fd551be62a6071cdae485342db19fdca519feb318c4a
.exe windows x86

f08b18f7fbca1a25727ed8902c9deea1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetLastError
VirtualAlloc
Sleep
SuspendThread
GetSystemTime
CloseHandle
FindResourceA
GetVersion
LocalLock
LoadLibraryA
CreateThread
FreeResource
LocalAlloc
LockResource
LoadResource
FindResourceExA
GetProcAddress
VirtualQuery
SetLastError
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
VirtualFree
VirtualProtect
LocalFree
SizeofResource
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
GetStringTypeW

user32

EnableWindow
LoadCursorA
GetDesktopWindow
MessageBoxA
FindWindowA

gdi32

DeleteObject

advapi32

LsaLookupSids

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384KB - Virtual size: 383KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ibss
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f08b18f7fbca1a25727ed8902c9deea1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 28KB - Virtual size: 25KB

.rdata Size: 384KB - Virtual size: 383KB

.data Size: 24KB - Virtual size: 25KB

.tls Size: 4KB - Virtual size: 2KB

.rsrc Size: 6KB - Virtual size: 361KB

.ibss Size: 1024B - Virtual size: 16KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 384KB - Virtual size: 383KB

.data
Size: 24KB - Virtual size: 25KB

.tls
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 6KB - Virtual size: 361KB

.ibss
Size: 1024B - Virtual size: 16KB