b525f9b68aa208b424ef12700a23ad88c83d8f08340092ff835aac6ed7f974f5

General

Target

b525f9b68aa208b424ef12700a23ad88c83d8f08340092ff835aac6ed7f974f5
Size

1.0MB
MD5

30bc89f4ee204795e5f309ea564b4478
SHA1

89f534f15b8df340dfcae9db40dfa86bbc95f335
SHA256

b525f9b68aa208b424ef12700a23ad88c83d8f08340092ff835aac6ed7f974f5
SHA512

815034afce38567125212e84e5d3284d312f277b7c987b0c27ada787945d303a6011b58c771762577f43d510292aa1366b0c135570c69715b6cc9dde279e4449
SSDEEP

24576:SZJdx1hfe5PgnbcyFy/MbLxHy8m4R1kTKkpKRfORZPpVO:m3eWbcyFeMRHy8m4RqmAKRfOfPpw

Score

N/A

Malware Config

Signatures

Files

b525f9b68aa208b424ef12700a23ad88c83d8f08340092ff835aac6ed7f974f5
.exe windows x86

eb366d0897e54e0c07b26bcb25ac5061

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
FreeLibrary
LocalAlloc
GlobalAlloc
CloseHandle
GetLastError
GetModuleHandleA
CreateEventA
LocalFree
GetVersionExA
lstrlenA
GetCommandLineA
lstrcatA
GetFileSize

user32

TranslateMessage
DestroyWindow
GetMessageA
DispatchMessageA
LoadIconA
BeginPaint
GetClientRect
EndPaint

msvcrt

toupper
exit
_adjust_fdiv
wcschr
memmove
__CxxFrameHandler
__p__fmode
_acmdln
__getmainargs
_c_exit
wcstoul
__p__commode
wcslen
rand
_exit
_initterm
_controlfp
_XcptFilter
_except_handler3

gdi32

PatBlt
GetTextMetricsA
BitBlt
GetBkColor
SelectObject
CreateFontIndirectA
GetTextColor
GetTextExtentPoint32A
GetDeviceCaps

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 425B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1018KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb366d0897e54e0c07b26bcb25ac5061

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

gdi32

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 425B

.rsrc Size: 1018KB - Virtual size: 2.8MB

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 425B

.rsrc
Size: 1018KB - Virtual size: 2.8MB