b3ee19c75dad0dd322445100afd6ca54671c899932267576a94f099cf597fe2b

Sharing

Copy URL Twitter E-mail

General

Target

b3ee19c75dad0dd322445100afd6ca54671c899932267576a94f099cf597fe2b
Size

408KB
MD5

6f7358f5fd0ffbf3e72b53610e827806
SHA1

cabc611a5f00d42303c93c3a2b992948b8975395
SHA256

b3ee19c75dad0dd322445100afd6ca54671c899932267576a94f099cf597fe2b
SHA512

501dfc376e67ec14bcf0f176c07285026d7be3b3cf2825b52f9b2fc5e75a922071866d05a9c38d7223590f8606fc7c4e68394943f7ad7c71fcae8e5d57f2cd5c
SSDEEP

12288:Z2U5BV7S6VEYmHZGAYSgS5oH7aOzi16NjS6em9p:1V7S6V45No75zigNjXeC

Score

N/A

Malware Config

Signatures

Files

b3ee19c75dad0dd322445100afd6ca54671c899932267576a94f099cf597fe2b
.exe windows x86

30feba5a0c928d737b99486e8e7f0e3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
Sleep
VirtualFree
UnmapViewOfFile
InterlockedExchange
GetModuleHandleW
GetACP
CloseHandle
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
GetCommandLineA
GetCPInfo
GetCurrentProcessId
SizeofResource
LCMapStringA
GlobalFree
GetSystemInfo
HeapCreate
LCMapStringW
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateEventW
CompareStringA
GetCurrentThreadId
FindFirstFileA
DeleteFileW
DeleteFileA
CreateDirectoryA
LoadLibraryA
GetVersionExA
VirtualProtect
QueryPerformanceCounter
FreeLibrary
SetHandleCount
HeapFree
WriteConsoleW
GetVersion
GetLocaleInfoA
SetEndOfFile
VirtualQuery
WriteConsoleA
TerminateProcess
CreateThread
UnhandledExceptionFilter
GetModuleFileNameA
HeapAlloc
IsDebuggerPresent
TlsGetValue
FindClose
LocalFree
WriteFile
WideCharToMultiByte
SetStdHandle
FreeEnvironmentStringsW
LocalAlloc
GetConsoleMode
FreeEnvironmentStringsA
GetLocalTime
WaitForSingleObject
GetConsoleOutputCP
GetStdHandle
GetLastError
GetCurrentThread
GetTickCount
GetStartupInfoA
GetProcAddress
GetCurrentProcess
GetEnvironmentStrings
GetEnvironmentStringsW
DeleteCriticalSection
TlsAlloc
SetLastError
GetEnvironmentVariableA
HeapDestroy
RtlUnwind
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
EnterCriticalSection
FatalAppExitA
GetOEMCP
HeapReAlloc
IsBadWritePtr
SetConsoleCtrlHandler
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
CompareStringW
SetEnvironmentVariableA

user32

CallWindowProcA
MessageBoxA
LoadCursorA
ScreenToClient
GetDlgItem
GetSubMenu
EndDialog
PostMessageA
SetFocus
DispatchMessageA
FillRect
GetWindowLongA
SetForegroundWindow
DefWindowProcA
UpdateWindow
DestroyWindow
SendMessageA
GetDC
EndPaint

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

msmka
Size: 288KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ggqao
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kkueyse
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

30feba5a0c928d737b99486e8e7f0e3a

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 52KB - Virtual size: 50KB

msmka Size: 288KB - Virtual size: 286KB

ggqao Size: 28KB - Virtual size: 26KB

kkueyse Size: 36KB - Virtual size: 34KB

.text
Size: 52KB - Virtual size: 50KB

msmka
Size: 288KB - Virtual size: 286KB

ggqao
Size: 28KB - Virtual size: 26KB

kkueyse
Size: 36KB - Virtual size: 34KB