f1c9964d6395410fadcbfe6e7f1dcec0e5521115a76f9305e2fc0892782c0ef9

Sharing

Copy URL

Twitter E-mail

General

Target

f1c9964d6395410fadcbfe6e7f1dcec0e5521115a76f9305e2fc0892782c0ef9
Size

54KB
MD5

8bbb6edb48ce4d94f9e0c345bdfd5b2c
SHA1

1102948b001de865cbd14fd135b6021a89d5ef8c
SHA256

f1c9964d6395410fadcbfe6e7f1dcec0e5521115a76f9305e2fc0892782c0ef9
SHA512

6b8da0eb180a368d31bde91fcc44077e800a216f3c303f5f9cd8d53fc79933ffc844b422d571386636a4515c560eac2a58e35c6d60cc33182bbda1886f73d300
SSDEEP

1536:kPwPhJg48i653675ytSrit7ieGZ4+jQA29gCFFOpLv1QJ:+AhwP3oq4itWx29gCFcZQJ

Score

N/A

Malware Config

Signatures

Files

f1c9964d6395410fadcbfe6e7f1dcec0e5521115a76f9305e2fc0892782c0ef9
.exe windows x86

3d5a6205a2a40363836c1266ff36cd67

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
DeleteCriticalSection
SizeofResource
GetFileAttributesW
GetCurrentThreadId
ExitProcess
GetCommandLineA
GetModuleHandleW
GetSystemTimeAsFileTime
CreateEventW
FindResourceW
SetEvent
IsBadWritePtr
CreateProcessA
InitializeCriticalSectionAndSpinCount
ReleaseSemaphore
Sleep
GetVersion
GetDriveTypeW
GetOEMCP
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
OpenEventW
FreeEnvironmentStringsA
InterlockedIncrement
GetFullPathNameW
FindResourceA
GetACP
GetFileSize
GetLastError
GetTickCount
VirtualAlloc
GetConsoleMode
ResumeThread
WaitForMultipleObjects
IsDebuggerPresent
ResetEvent
RtlUnwind
OpenMutexA
ExpandEnvironmentStringsW
WaitForSingleObject
SetLastError
GetThreadPriority

user32

IsWindowVisible
GetWindowTextLengthW
RegisterWindowMessageA
GetDC
CallNextHookEx
LoadImageW
wsprintfW
LoadIconA
GetSysColor
SetWindowPos
InsertMenuA
LoadBitmapW
FillRect
GetSubMenu
PeekMessageW
PostQuitMessage
PostMessageW
SetWindowLongA
LoadIconW
LoadStringA
EqualRect
SetDlgItemTextA
GetWindowPlacement
GetWindowTextA
GetWindowTextW
SetWindowLongW
GetWindow
PtInRect
IsWindow
GetMenuItemCount
MessageBoxA
CharPrevW
LoadCursorW
GetKeyState
PeekMessageA
SystemParametersInfoW
GetClientRect
WinHelpW
MessageBoxW
OffsetRect
UnregisterClassW
CharUpperW
LoadCursorA
SetForegroundWindow

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 343B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 461B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 460B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d5a6205a2a40363836c1266ff36cd67

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 49KB - Virtual size: 49KB

.tls Size: 512B - Virtual size: 343B

BSS Size: 512B - Virtual size: 74KB

DATA Size: 512B - Virtual size: 461B

.rsrc Size: 512B - Virtual size: 460B

.text
Size: 49KB - Virtual size: 49KB

.tls
Size: 512B - Virtual size: 343B

BSS
Size: 512B - Virtual size: 74KB

DATA
Size: 512B - Virtual size: 461B

.rsrc
Size: 512B - Virtual size: 460B