1bfceffc51c2efabd69be98e84aa702852b5587df88d51769b6d482cc2b482f9

Sharing

Copy URL Twitter E-mail

General

Target

1bfceffc51c2efabd69be98e84aa702852b5587df88d51769b6d482cc2b482f9
Size

531KB
MD5

a69e42d1aa14dfe8b4c6a1285523a16f
SHA1

0b8beaf4f3469e5d7dabfb099466fcd81a4d9c1b
SHA256

1bfceffc51c2efabd69be98e84aa702852b5587df88d51769b6d482cc2b482f9
SHA512

1ffa83067c1386de779410d582bf2182b61268809baafcc606a1fd660d0a3e3041f54e6a1c0ebe16d267238c2d4cbe634f164936a3c75455ff7a800af35383ac
SSDEEP

12288:gJKs/RmK2R4pKaNt+rztxVbXND4cbpyHfU4tS:b4RAWpqn4c1SU4t

Score

N/A

Malware Config

Signatures

Files

1bfceffc51c2efabd69be98e84aa702852b5587df88d51769b6d482cc2b482f9
.exe windows x86

75c6819bdfaf82b7de5cf0e24fc24e29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassA
CreateWindowExA
ShowWindow
MessageBoxW
InvalidateRect
GrayStringW
RegisterClassExA
FillRect
DestroyWindow
DefWindowProcA
SendDlgItemMessageW
NotifyWinEvent

comctl32

ImageList_Replace
DrawStatusTextA
CreateStatusWindowW
ImageList_SetOverlayImage
ImageList_Merge
ImageList_Copy
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_SetDragCursorImage
ImageList_GetImageInfo
DrawInsert
ImageList_DrawIndirect
InitCommonControlsEx
CreatePropertySheetPageA
ImageList_DrawEx
InitMUILanguage
ImageList_LoadImageA
DrawStatusTextW

kernel32

GetCurrentThreadId
GetUserDefaultLCID
IsValidLocale
InterlockedDecrement
GetProcAddress
HeapSize
IsDebuggerPresent
GetLocaleInfoW
InitializeCriticalSectionAndSpinCount
FreeLibrary
GetLocaleInfoA
WriteConsoleW
IsValidCodePage
GetCommandLineW
CompareStringW
TlsFree
VirtualQuery
SetStdHandle
GetACP
SetUnhandledExceptionFilter
OpenMutexA
GetModuleHandleA
GetConsoleMode
TlsSetValue
TerminateProcess
GetCPInfo
GetOEMCP
QueryPerformanceCounter
EnumSystemLocalesA
UnhandledExceptionFilter
EnterCriticalSection
GetModuleFileNameW
SetConsoleCtrlHandler
ExitProcess
CreateFileA
WideCharToMultiByte
HeapReAlloc
GetDateFormatA
InterlockedIncrement
GetSystemTimeAsFileTime
GetConsoleOutputCP
LCMapStringA
VirtualAlloc
HeapDestroy
TlsGetValue
MultiByteToWideChar
WriteConsoleA
SetFilePointer
LCMapStringW
GetFileType
TlsAlloc
VirtualFree
CreateMutexA
LeaveCriticalSection
GetStartupInfoW
Sleep
CloseHandle
GetLastError
GetConsoleCP
GetStringTypeA
LocalUnlock
RtlUnwind
GetCurrentThread
GetCurrentProcessId
GetStartupInfoA
GetTimeZoneInformation
GetStdHandle
GetCurrentProcess
FlushFileBuffers
FreeEnvironmentStringsW
GetModuleHandleW
GetCommandLineA
InterlockedExchange
DeleteCriticalSection
GetTimeFormatA
SetEnvironmentVariableA
GetModuleFileNameA
HeapAlloc
LoadLibraryA
SetLastError
GetEnvironmentStringsW
HeapFree
HeapCreate
ReadFile
GetStringTypeW
CompareStringA
GetTickCount
WriteFile
SetHandleCount

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 214KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75c6819bdfaf82b7de5cf0e24fc24e29

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 172KB - Virtual size: 171KB

.rdata Size: 214KB - Virtual size: 226KB

.data Size: 105KB - Virtual size: 105KB

.rsrc Size: 38KB - Virtual size: 38KB

.text
Size: 172KB - Virtual size: 171KB

.rdata
Size: 214KB - Virtual size: 226KB

.data
Size: 105KB - Virtual size: 105KB

.rsrc
Size: 38KB - Virtual size: 38KB