8c8bf8b89c141c2b9deb3a324c8bb51c45608983c16922d8bf8cccc919680ea0

Sharing

Copy URL

Twitter E-mail

General

Target

8c8bf8b89c141c2b9deb3a324c8bb51c45608983c16922d8bf8cccc919680ea0
Size

83KB
MD5

a200ffed84bd1878625c93e8955aa4a7
SHA1

cbe1f666eb731575262ae768cb01cbbbb625f703
SHA256

8c8bf8b89c141c2b9deb3a324c8bb51c45608983c16922d8bf8cccc919680ea0
SHA512

297d8f752d95fe355e5bc388290b8ab18886e180e11a434e4c14a7c6a779cb317c383165b1c6227f09525e95be812700228010a4b0e8bf7155db3f50624ed25a
SSDEEP

1536:6cZGtkc6G4LJBbqf50O3j6tMv/pDI4VshA51B5sBmzWPjP:6cYkc74LJBbi5fj7D2hU5haj

Score

N/A

Malware Config

Signatures

Files

8c8bf8b89c141c2b9deb3a324c8bb51c45608983c16922d8bf8cccc919680ea0
.exe windows x86

81b0a3147d803160c46059a4fb464117

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipCloneImage
GdiplusStartup
GdiplusShutdown
GdipDrawImageI
GdipCreateFromHDC
GdipBitmapGetPixel
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipFree
GdipAlloc

kernel32

GetModuleHandleW
HeapReAlloc
GetStringTypeW
MultiByteToWideChar
LCMapStringW
HeapSize
RtlUnwind
Sleep
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
TerminateProcess
IsDebuggerPresent
UnhandledExceptionFilter
FreeLibrary
GetCurrentProcess
GetProcAddress
LoadLibraryW
LoadLibraryA
OutputDebugStringW
lstrcatW
HeapAlloc
GetProcessHeap
HeapFree
LockResource
SizeofResource
LoadResource
FindResourceW
GetLocaleInfoW
InterlockedExchange
SetConsoleCtrlHandler
EnterCriticalSection
FatalAppExitA
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapDestroy
HeapCreate
GetCurrentThread
InterlockedDecrement
GetLastError
GetCurrentThreadId
SetLastError
GetCommandLineA
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement

user32

LoadCursorW
RegisterClassExW
CreateWindowExW
ShowWindow
UpdateWindow
GetMessageW
DispatchMessageW
BeginPaint
GetClientRect
FillRect
EndPaint
InvalidateRect
PostQuitMessage
DefWindowProcW
SendMessageW
wvsprintfW

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81b0a3147d803160c46059a4fb464117

Headers

DLL Characteristics

File Characteristics

Imports

gdiplus

kernel32

user32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 3KB - Virtual size: 6KB

.rsrc Size: 38KB - Virtual size: 37KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 3KB - Virtual size: 6KB

.rsrc
Size: 38KB - Virtual size: 37KB

.reloc
Size: 2KB - Virtual size: 2KB