7b99901b78954a559b4ac01bbaec57c9d0f98a9c4578508b5d5efa956d547201

General

Target

7b99901b78954a559b4ac01bbaec57c9d0f98a9c4578508b5d5efa956d547201
Size

111KB
MD5

0b3dbf3cc4be857e79059890a0181eab
SHA1

0ba31ef32afcb50021d9768d8e97d14621e4ec08
SHA256

7b99901b78954a559b4ac01bbaec57c9d0f98a9c4578508b5d5efa956d547201
SHA512

e1e9532c6e31274675f24819ad06a66525856f1558392fc684a0845d929862f1c9fe28b5ed41ae05a22d6efbcfb7d98b85c821290705fe07c2abc4ba47e362bf
SSDEEP

3072:o73N0pH1+RubVFQjDLlcdikgBJJz7+nCI4T:o7CpH1+R6Qr8iZB3Xi

Score

N/A

Malware Config

Signatures

Files

7b99901b78954a559b4ac01bbaec57c9d0f98a9c4578508b5d5efa956d547201
.exe windows x86

1ecaa9723a94f6499d73f67e6b21ebbf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_setjmp3
iswctype
printf
_close
__p__fmode
_lseek
_acmdln
atexit
_XcptFilter
_utime
__setusermatherr
__p__commode
wcsrchr
__set_app_type
floor
_setjmp
__getmainargs
fgetpos
_vsnwprintf
_initterm
_exit
_snwprintf
_wcsnicmp
sqrt
_pctype
exit
_except_handler3
gmtime
strpbrk
_adjust_fdiv

kernel32

GetModuleHandleA
GetCurrentProcessId
LocalFileTimeToFileTime
GetDateFormatA
IsBadWritePtr
VirtualProtect
CopyFileA
GlobalFree
VirtualFree
GetStartupInfoA

user32

SendDlgItemMessageA
FillRect
GetScrollInfo
DrawIconEx
DestroyCursor
GetSystemMetrics
GetMessagePos
GetKeyState
DestroyWindow
EnableWindow
CharLowerA
OpenClipboard
GetSysColorBrush
RegisterWindowMessageA
IsWindowVisible
GetScrollRange
InsertMenuA
GetParent
SetForegroundWindow
GetSysColor
CharNextA

advapi32

ControlService
RegOpenKeyW
RegOpenKeyExW
AllocateAndInitializeSid
OpenServiceA
CryptReleaseContext
CloseServiceHandle
RegCloseKey
DeregisterEventSource
RegEnumKeyA
AddAccessAllowedAce
RegDeleteKeyW
AdjustTokenPrivileges
GetLengthSid
RegDeleteValueA
RegDeleteKeyA
CryptHashData

oleaut32

VariantCopy
SafeArrayPtrOfIndex
VariantInit
SafeArrayRedim
SafeArrayCreate
SysStringByteLen
SysFreeString
VariantCopyInd
SysStringLen
GetActiveObject
VariantClear
SetErrorInfo
SafeArrayUnaccessData
SysReAllocStringLen

Sections

.text
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ecaa9723a94f6499d73f67e6b21ebbf

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

oleaut32

Sections

.text Size: 59KB - Virtual size: 58KB

.data Size: 17KB - Virtual size: 17KB

.rsrc Size: 34KB - Virtual size: 33KB

.text
Size: 59KB - Virtual size: 58KB

.data
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 34KB - Virtual size: 33KB