7b9ae4c675ba690c3443192544251f2c484d309a21ab50edcdd515a90fc3b636

General

Target

7b9ae4c675ba690c3443192544251f2c484d309a21ab50edcdd515a90fc3b636
Size

267KB
MD5

3d20a089630ad1ac3501f1b9e3e5c4b2
SHA1

3351374bcc0ae7e9a12108b7234765cd891f7fbd
SHA256

7b9ae4c675ba690c3443192544251f2c484d309a21ab50edcdd515a90fc3b636
SHA512

f1e8d658b9287641fb3346a44a09337c35e102f14a881a4be73084280f7dae278833aa60ad240beae3efd340a0fe6d3a0f4a8018224a263b7fa0d5597d8c06fa
SSDEEP

6144:wiJZQuYrE3bazkt9Hn0oTi8m+L2nPf1AkS19XYYkVPTEVZo5WdRBPQ:wiDvrazkLknHikS1xGNTEVZMW

Score

N/A

Malware Config

Signatures

Files

7b9ae4c675ba690c3443192544251f2c484d309a21ab50edcdd515a90fc3b636
.exe windows x86

f90e1b877ee4794757f2088ba1c0df9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
IsDebuggerPresent
IsValidLocale
TlsFree
GetProcAddress
LCMapStringA
HeapReAlloc
TlsSetValue
FreeEnvironmentStringsW
GetTimeFormatA
GetCurrentProcessId
VirtualFree
EnterCriticalSection
GetLastError
WideCharToMultiByte
GetModuleHandleA
LCMapStringW
SetEvent
WriteFile
SetHandleCount
GetModuleHandleW
InitializeCriticalSectionAndSpinCount
GetACP
HeapSize
MultiByteToWideChar
GetProfileIntA
GetStringTypeA
GetNumberFormatW
FreeEnvironmentStringsA
ExitProcess
GetTickCount
GetUserDefaultLangID
UnhandledExceptionFilter
HeapFree
GetDateFormatA
GetModuleFileNameA
HeapCreate
LoadLibraryA
QueryPerformanceCounter
GetCurrentThread
VirtualAlloc
SuspendThread
FreeLibrary
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetEnvironmentStrings
GetLocaleInfoA
GetStartupInfoA
SetUnhandledExceptionFilter
DebugBreak
IsValidCodePage
GetCPInfo
GetSystemTimeAsFileTime
GetEnvironmentStringsW
CompareStringW
GetCompressedFileSizeA
GetFileType
GetLocaleInfoW
CompareStringA
TlsAlloc
SetConsoleCtrlHandler
HeapDestroy
SetThreadLocale
GetOEMCP
Sleep
GetTimeFormatW
InterlockedIncrement
TlsGetValue
GetStdHandle
ConvertDefaultLocale
InterlockedExchange
GetTimeZoneInformation
GetStringTypeW
GetCommandLineA
SetEnvironmentVariableA
EnumSystemLocalesA
DeleteCriticalSection
LeaveCriticalSection
InterlockedDecrement
HeapAlloc
SetLastError
LoadLibraryExW

advapi32

RegConnectRegistryW
RegEnumValueW
CryptSetProviderW
ReportEventA
RegOpenKeyW
RegSaveKeyA
CryptEncrypt
RegCreateKeyExA
AbortSystemShutdownA

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f90e1b877ee4794757f2088ba1c0df9e

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 138KB - Virtual size: 138KB

.data Size: 113KB - Virtual size: 119KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 138KB - Virtual size: 138KB

.data
Size: 113KB - Virtual size: 119KB

.rsrc
Size: 14KB - Virtual size: 13KB