b9e2cf5bfbd89e6f97c3f49fb57abb38cd2f7356f738e6453942d9b1e423d3c9

Sharing

Copy URL Twitter E-mail

General

Target

b9e2cf5bfbd89e6f97c3f49fb57abb38cd2f7356f738e6453942d9b1e423d3c9
Size

544KB
MD5

a5f7ebd6b61422354950025059e06022
SHA1

bda40d98ee86736bbe23dbad1f82e607d2b2e89d
SHA256

b9e2cf5bfbd89e6f97c3f49fb57abb38cd2f7356f738e6453942d9b1e423d3c9
SHA512

b9bfbec3d1b23ce0db0c46f811f21f27d23c4b8ddbd1a0ff255096e1b49c0e07a938505e50ac251e9a9535eb5d16943fd09efc4bc944486d740a09882ecb90ef
SSDEEP

12288:2wFbOGJaNyHOBmNg+fssO24JkpR7xabOHauZd:RFH5Ng+f4fkpR7xuk

Score

N/A

Malware Config

Signatures

Files

b9e2cf5bfbd89e6f97c3f49fb57abb38cd2f7356f738e6453942d9b1e423d3c9
.exe windows x86

555e8b2a0442282530d4d5e642ad88e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PeekMessageA
TranslateMessage
IsIconic
SetTimer
FillRect
DispatchMessageA
SetFocus
GetSystemMetrics
GetClientRect
SetCapture
SetWindowLongA
EndDialog
SetWindowTextA
ClientToScreen
SendMessageA
ReleaseDC
InvalidateRect
GetDC
IsWindow
SetWindowPos
PostQuitMessage
GetWindowRect
wsprintfA
CallWindowProcA
SetCursor

kernel32

InterlockedIncrement
LCMapStringW
MultiByteToWideChar
GetOEMCP
GetCPInfo
RtlUnwind
HeapFree
VirtualAlloc
Sleep
VirtualFree
WriteFile
HeapCreate
GetACP
SetFilePointer
TlsFree
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
GetLastError
LeaveCriticalSection
CreateFileA
GetFileType
CreateFileW
GetTimeZoneInformation
FindNextFileA
CreateFileMappingA
GetDiskFreeSpaceA
FindNextFileW
CompareStringW
GetProcessHeap
GetProcAddress
GetEnvironmentVariableA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
GetTickCount
QueryPerformanceCounter
FreeLibrary
SetHandleCount
EnterCriticalSection
WriteConsoleW
GetCurrentThreadId
SetEndOfFile
TerminateProcess
SetUnhandledExceptionFilter
GetModuleHandleA
GetLocalTime
GetModuleFileNameA
GetVersionExA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
TlsGetValue
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
LocalFree
SetEvent
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
HeapDestroy
WaitForSingleObject
GetFileAttributesA
GetConsoleOutputCP
GetStdHandle
GetVersion
ExitProcess
UnhandledExceptionFilter
GetEnvironmentStrings
TlsSetValue
TlsAlloc

gdi32

DeleteObject
GetDeviceCaps
SelectObject
CreateSolidBrush

oleaut32

VariantInit
SysFreeString
SysStringLen
VariantClear
SysAllocString

advapi32

RegCreateKeyExA
RegSetValueExA

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 517KB - Virtual size: 517KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

555e8b2a0442282530d4d5e642ad88e2

Headers

File Characteristics

Imports

user32

kernel32

gdi32

oleaut32

advapi32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 517KB - Virtual size: 517KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 517KB - Virtual size: 517KB

.rsrc
Size: 5KB - Virtual size: 5KB