MDE_File_Sample_da814def95b1d9cc2a847a04c24b7880195144e1[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

MDE_File_Sample_da814def95b1d9cc2a847a04c24b7880195144e1.zip
Size

112KB
MD5

5cbd674383066ded76f2025cece914c0
SHA1

cf5a70549730eabba1523b891840fdf50639b516
SHA256

b01c61dc8dad213ca4a4c97949523046141c17eae9171e843e1f6410e7cd9cf0
SHA512

6d4ae3bdeceeb700f241a497b632e0a1f1058051a92bb3d9c366b5f103523c9158629e99d75d1190bf6e6eae3e797541b425f380eca6a018d7b692cc0d0cb4ce
SSDEEP

3072:EvhSHulFd+nqueZSFk6keOo2f48YUY9cLq7Y1GZdh:EJSHuueZSWekf48nL6Uadh

Score

1^/10

Malware Config

Signatures

Files

MDE_File_Sample_da814def95b1d9cc2a847a04c24b7880195144e1.zip
.zip

Password: 123
Memento.exe
.exe windows x86

Password: 123

c0de986ab7cefc21a804c1605b839fab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
GetDesktopWindow
GetWindowPlacement
DestroyWindow
IsWindow
CallWindowProcA
LoadCursorA
SetCursor
AdjustWindowRectEx
GetMenu
SetScrollInfo
GetScrollInfo
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
EnumChildWindows
GetDlgItem
GetClassNameA
MapWindowPoints
GetScrollPos
LockWindowUpdate
ScreenToClient
GetParent
MoveWindow
GetWindow
ShowScrollBar
EnableScrollBar
SetScrollPos
SetFocus
GetFocus
SetCapture
ReleaseCapture
IsWindowEnabled
BringWindowToTop
GetKeyState
GetSysColor
DestroyMenu
CreatePopupMenu
GetMenuItemCount
InsertMenuItemA
AppendMenuA
DeleteMenu
GetMenuState
GetMenuItemID
GetMenuStringA
ModifyMenuA
SetTimer
KillTimer
DrawAnimatedRects
SystemParametersInfoA
FindWindowExA
PostMessageA
TrackPopupMenuEx
LoadAcceleratorsA
WaitMessage
DispatchMessageA
TranslateMessage
IsDialogMessageA
TranslateAcceleratorA
PeekMessageA
PostQuitMessage
RegisterClassExA
LoadIconA
wsprintfA
GetCursorPos
SetMenuDefaultItem
RegisterHotKey
UnregisterHotKey
GetDC
DestroyIcon
LoadImageA
DrawTextA
DrawEdge
DrawFocusRect
DrawIconEx
BeginPaint
EndPaint
DialogBoxParamA
DialogBoxIndirectParamA
CreateDialogParamA
CreateDialogIndirectParamA
GetDlgCtrlID
SetMenu
DeferWindowPos
EndDeferWindowPos
BeginDeferWindowPos
CopyIcon
LoadStringA
SetWindowPlacement
EnableWindow
InvalidateRect
UpdateWindow
IsWindowVisible
ShowWindow
CreateWindowExA
SendMessageA
SetForegroundWindow
RegisterWindowMessageA
EndDialog
GetWindowDC
ReleaseDC
GetSysColorBrush
SetActiveWindow
SetWindowLongA
GetWindowLongA
FillRect
DefWindowProcA
ClientToScreen
CheckMenuItem
RemoveMenu
LoadMenuA
GetSubMenu
GetMenuItemInfoA
SetMenuItemInfoA
GetWindowRect
GetSystemMetrics
SetWindowPos
DrawFrameControl

gdi32

SetBkMode
GetTextMetricsA
GetDeviceCaps
CreateFontIndirectA
GetStockObject
SetTextColor
SetBkColor
MoveToEx
GetObjectA
TextOutA
Ellipse
LineTo
DeleteObject
Rectangle
CreatePen
SelectObject
CreateSolidBrush
CreateBrushIndirect

comdlg32

FindTextA

kernel32

GetProcAddress
LoadLibraryA
GetTimeFormatA
GetDateFormatA
GetFileAttributesA
MoveFileExA
GetModuleFileNameA
SizeofResource
LockResource
LoadResource
FindResourceA
GetModuleHandleA
FreeLibrary
GetTickCount
Sleep
MulDiv
LocalFree
FormatMessageA
GetLastError
GetWindowsDirectoryA
GetVersionExA
EnterCriticalSection
InitializeCriticalSection
InterlockedExchange
DeleteCriticalSection
LeaveCriticalSection
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
InterlockedDecrement
InterlockedIncrement
IsBadReadPtr
TerminateProcess
GetCurrentProcess
HeapAlloc
HeapFree
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
RaiseException
CloseHandle
ReadFile
SetFilePointer
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
CreateFileA
SetStdHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyA
RegCreateKeyA
RegSetValueExA
RegDeleteKeyA
RegQueryInfoKeyA

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHAppBarMessage
Shell_NotifyIconA
ShellExecuteA
SHGetMalloc

Sections

.text
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Password: 123

Password: 123

c0de986ab7cefc21a804c1605b839fab

Headers

File Characteristics

Imports

user32

gdi32

comdlg32

kernel32

advapi32

shell32

Sections

.text Size: 164KB - Virtual size: 164KB

.rdata Size: 32KB - Virtual size: 32KB

.data Size: 24KB - Virtual size: 29KB

.rsrc Size: 164KB - Virtual size: 164KB

.text
Size: 164KB - Virtual size: 164KB

.rdata
Size: 32KB - Virtual size: 32KB

.data
Size: 24KB - Virtual size: 29KB

.rsrc
Size: 164KB - Virtual size: 164KB