e3d2e5a70634889d1615b87a759103dd3b6ab54ea38807ee69b185be4fa696a7

Sharing

Copy URL Twitter E-mail

General

Target

e3d2e5a70634889d1615b87a759103dd3b6ab54ea38807ee69b185be4fa696a7
Size

132KB
MD5

049bcc9d600f8f8bad2bdb061007c9cc
SHA1

0925ff9a5f023b811e0c26ff350d266504682c34
SHA256

e3d2e5a70634889d1615b87a759103dd3b6ab54ea38807ee69b185be4fa696a7
SHA512

70e1ae07550b644f84da8acf443678477173471dd80d3a4ca5f15a515e1956652fa4d23e906a586c49ef8253aaaad73eb9e27a063cd078a75c95309d635bf5e4
SSDEEP

1536:zB4XZkxWJBUimGWnYPtO4ntCwNOZ7yisWLt7Fe7hqGLAjd+gOoGzwSpf/7I4PbyH:ypk8K/49ElyiBLtheEaqdmoGz1MF

Score

N/A

Malware Config

Signatures

Files

e3d2e5a70634889d1615b87a759103dd3b6ab54ea38807ee69b185be4fa696a7
.exe windows x86

4d4d6f339181b1149bef89bf60bfb5dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
GetVersionExW
OpenProcess
GlobalFree
QueryPerformanceFrequency
GlobalAlloc
MulDiv
GetLocaleInfoW
GlobalUnlock
WaitForSingleObject
GetCurrentProcess
LoadLibraryA
GetSystemTimeAsFileTime
FindNextFileW
GetProcessHeap
FindClose
FindFirstFileW
SetFileAttributesA
GetFileAttributesA
WriteConsoleA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetStdHandle
SetFilePointer
ReadFile
SetEndOfFile
GetProcAddress
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
HeapAlloc
CreateFileA
CloseHandle
GetLastError
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
FlushFileBuffers
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
ExitProcess
TerminateProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
UnhandledExceptionFilter
GetModuleFileNameA

user32

GetSysColorBrush
InflateRect
SetParent
SetCursor
InsertMenuItemW
IntersectRect
GetMessagePos
UpdateWindow
FindWindowA
GetKeyNameTextA
GetWindowTextLengthW
EnumChildWindows
ShowWindow
GetWindowTextW
FillRect
GetActiveWindow
CreatePopupMenu
AppendMenuA
DrawFrameControl
PostMessageW
SetWindowsHookExA
IsDialogMessageW
GetMessageA
DrawIcon
LoadIconW
ReleaseCapture
LoadImageA
WindowFromPoint

ole32

OleUninitialize
CoCreateInstance
CoUninitialize
CoInitialize
OleInitialize

Exports

Exports

Berusohar
Emigynaseludesytahexykoqe
Opagypepajutivorajiqis
Rakamujesekaraqozezokilo
Ucuxemyxogenyf
Ujameqipyxu
Wybahacutehusezyqivajun

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d4d6f339181b1149bef89bf60bfb5dc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 36KB - Virtual size: 32KB

.data Size: 48KB - Virtual size: 260KB

.tls Size: 4KB - Virtual size: 44B

.rsrc Size: 4KB - Virtual size: 920B

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 36KB - Virtual size: 32KB

.data
Size: 48KB - Virtual size: 260KB

.tls
Size: 4KB - Virtual size: 44B

.rsrc
Size: 4KB - Virtual size: 920B

.reloc
Size: 4KB - Virtual size: 2KB