f4cb637797c5be861311172517f31eef95632768f167220f8fec895203b9d1d9

General

Target

f4cb637797c5be861311172517f31eef95632768f167220f8fec895203b9d1d9
Size

592KB
MD5

990e885f265d7649f623eb98f41db30f
SHA1

35342220d42e05fa748092c70d52a991c80ad942
SHA256

f4cb637797c5be861311172517f31eef95632768f167220f8fec895203b9d1d9
SHA512

9b4aadec661ec37afb64b7917000d97043da639775eae513c17527f90006b5dc117b967b20d918863a877c8fc5ad33d52e15cf47b64f563852582a57ce023127
SSDEEP

12288:0SDPvOyFaYCdz1P8vum1iqoR25fHy+uEJsns8S86MZSP8fZR1HmYJ:0SDP3FrAgulR25fHL8S86M/sYJ

Score

N/A

Malware Config

Signatures

Files

f4cb637797c5be861311172517f31eef95632768f167220f8fec895203b9d1d9
.exe windows x86

00487c2ec5ce9f938e3a64125842ab48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
DispatchMessageW
SetCapture
BringWindowToTop
DefWindowProcA
GetWindowTextLengthW
UnregisterClassW
IsWindowEnabled
InvalidateRect
KillTimer
GetMenuItemID
SetTimer
ShowWindow

kernel32

TlsAlloc
VirtualProtect
IsBadWritePtr
GetLastError
HeapReAlloc
RemoveDirectoryW
LeaveCriticalSection
GetCurrentProcessId
GetStartupInfoA
GetEnvironmentStringsW
Sleep
GetOEMCP
FindResourceA
SetUnhandledExceptionFilter
DeleteFileA
lstrlenW
CreateFileA
GlobalDeleteAtom
HeapFree
GetCommandLineA
RaiseException
OutputDebugStringA
UnmapViewOfFile
BeginUpdateResourceW
CloseHandle
HeapAlloc
InterlockedIncrement
TerminateProcess
SetStdHandle
GetCurrentThreadId
GetModuleHandleA
RtlUnwind
SetFilePointer
RemoveDirectoryA
SetConsoleCtrlHandler
LocalAlloc
DeleteCriticalSection
GlobalFree
DeleteFileW
SetConsoleCP
GetLocalTime
EnterCriticalSection
LoadLibraryW
GetTickCount
ExitProcess
FreeLibrary
ReadFile
HeapSize
IsDebuggerPresent
MultiByteToWideChar
CreateThread
GetCurrentProcess
GetACP

msvcrt

_errno
_amsg_exit
_unlock
__dllonexit
??0exception@@QAE@ABQBD@Z
_purecall
?terminate@@YAXXZ

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 461KB - Virtual size: 860KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 162B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00487c2ec5ce9f938e3a64125842ab48

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

Sections

.text Size: 102KB - Virtual size: 102KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 461KB - Virtual size: 860KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 512B - Virtual size: 162B

.text
Size: 102KB - Virtual size: 102KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 461KB - Virtual size: 860KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 512B - Virtual size: 162B