7ead681e0746b57ae2945eb469d323657c85e81f87c895ee96e106016517364f

Sharing

Copy URL Twitter E-mail

General

Target

7ead681e0746b57ae2945eb469d323657c85e81f87c895ee96e106016517364f
Size

1020KB
MD5

7def0795d1bc834adcaa0345b7f8c495
SHA1

f0d30c52f53de88f339a974dbfd115fe89364d48
SHA256

7ead681e0746b57ae2945eb469d323657c85e81f87c895ee96e106016517364f
SHA512

23f317dba588b5618f1a15c7043e5c196a415fdb4f8e621f2e7c31375094f60fa8e6b33f6495561cf4f7bc8737062fde77cb721dde6992eb31ef774b9d8628b5
SSDEEP

24576:tnqR6WsL/nUEbZjBCW4V9CNLPWJycq9BPFh14DsO9YAZU:66DDUEHI9++63n14Dh9

Score

1^/10

Malware Config

Signatures

Files

7ead681e0746b57ae2945eb469d323657c85e81f87c895ee96e106016517364f
.exe windows x86

62016c965c083431836eb161c9bf6f4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
CreateDirectoryA
FindClose
CreateThread
FindFirstFileA
CopyFileA
SetFileTime
ReadFile
LocalAlloc
GetFileSize
LocalFree
WriteFile
SetFilePointer
CreateFileA
LockResource
LoadResource
SizeofResource
FindResourceA
DeleteFileA
GetTempPathA
GetTickCount
GetExitCodeThread
SetEndOfFile
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
LoadLibraryA
GetFileType
GetACP
GetCPInfo
IsBadWritePtr
HeapReAlloc
VirtualAlloc
GetLastError
VirtualFree
SetEvent
WaitForSingleObject
GetOEMCP
CloseHandle
TerminateProcess
GetCurrentProcess
SetHandleCount
GetEnvironmentStringsW
GetStdHandle
HeapCreate
HeapDestroy
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
UnhandledExceptionFilter
GetModuleFileNameA
HeapAlloc
HeapFree
GetProcAddress
WideCharToMultiByte
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings

user32

SetWindowTextA
LoadIconA
PostMessageA
SendDlgItemMessageA
SetDlgItemTextA
GetDlgItem
UpdateWindow
MessageBoxA
CreateDialogParamA
SendMessageA
PostQuitMessage
DestroyIcon
IsDialogMessageA
TranslateMessage
ShowWindow
GetMessageA
DispatchMessageA

shell32

SHGetMalloc
SHGetPathFromIDListA
ShellExecuteA
SHGetSpecialFolderLocation

comctl32

InitCommonControlsEx

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 948KB - Virtual size: 968KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

62016c965c083431836eb161c9bf6f4e

Headers

File Characteristics

Imports

kernel32

user32

shell32

comctl32

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 17KB

.rsrc Size: 948KB - Virtual size: 968KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 17KB

.rsrc
Size: 948KB - Virtual size: 968KB