dc25a4c4c72a487bfcde3964671cded598f063d6338ea64c9d44fe3aedb1dc8f

Sharing

Copy URL Twitter E-mail

General

Target

dc25a4c4c72a487bfcde3964671cded598f063d6338ea64c9d44fe3aedb1dc8f
Size

41KB
MD5

865a79123cddab6a5ab3f2d9e6b2b43a
SHA1

c5c4895067e6208b95f35bb913db0c9ecdd4b098
SHA256

dc25a4c4c72a487bfcde3964671cded598f063d6338ea64c9d44fe3aedb1dc8f
SHA512

ca14597e6ab471f3b4493b5f9326ce398c9da3475835e08cf22c3f22e779e22846b59b17c1280be69e8339511ebdf8c93cadc8075f6a36c295a35dc6419b1136
SSDEEP

768:ewpCQbtllnIA3z7HO8g2A8zQLA2kkVUM86gmPhM6noISoinyvqFBCe:3pLtllnL3z7u/2MPVhym5yOvq

Score

N/A

Malware Config

Signatures

Files

dc25a4c4c72a487bfcde3964671cded598f063d6338ea64c9d44fe3aedb1dc8f
.exe windows x86

58a33c04fae23056541e2b2e0cef99af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
InterlockedDecrement
HeapAlloc
GetCommandLineA
FlushInstructionCache
DeleteCriticalSection
CreateFileA
WriteConsoleW
FormatMessageA
LCMapStringW
MulDiv
OutputDebugStringA
FreeEnvironmentStringsW
ResumeThread
lstrcmpA
GetProcAddress
GetConsoleOutputCP
LockResource
InterlockedCompareExchange
GlobalFree
lstrlenA
GetSystemTimeAsFileTime
GlobalMemoryStatus
SetUnhandledExceptionFilter
CloseHandle
WriteFile
FreeLibrary
ResetEvent
GlobalSize
LoadLibraryA
GetOEMCP
IsBadWritePtr
VirtualFree
TerminateThread
LCMapStringA
GetUserDefaultLCID
RtlUnwind
GetLastError
GetACP
SetConsoleCtrlHandler
GetModuleHandleA
HeapDestroy
GetComputerNameW
GetProcessHeap
LoadResource
GetCurrentThreadId
CreateFileW
GetCurrentProcess
GetStdHandle
TerminateProcess
FindClose
FlushFileBuffers
IsProcessorFeaturePresent
Sleep
GetCurrentProcessId
InterlockedExchange
OutputDebugStringW
UnhandledExceptionFilter
QueryPerformanceCounter
HeapFree
CreateEventW
GetCommandLineW
SetHandleCount
VirtualAlloc
GetVersionExA
GetEnvironmentStrings
MultiByteToWideChar

msvcrt

_controlfp
_exit
_unlock
??0exception@@QAE@ABV0@@Z
__dllonexit
wcstoul
??0exception@@QAE@XZ
_wtoi
realloc
??2@YAPAXI@Z
memset
wcschr

user32

EqualRect
DestroyMenu
GetClientRect
SetPropW
DispatchMessageW
TrackPopupMenu
MessageBoxA
GetSysColorBrush
DrawTextW
IsWindow
SetRect
GetKeyState
CharNextW
OpenClipboard
UpdateWindow

ole32

CoCreateInstance
CreateStreamOnHGlobal
CoUninitialize

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58a33c04fae23056541e2b2e0cef99af

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 3KB - Virtual size: 15KB

.data Size: 512B - Virtual size: 216KB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 50B

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 3KB - Virtual size: 15KB

.data
Size: 512B - Virtual size: 216KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 50B