bdc81934608291b599a35bad2943e159b88866530e6b48442fa3a3cb86d72fc4

General

Target

bdc81934608291b599a35bad2943e159b88866530e6b48442fa3a3cb86d72fc4
Size

257KB
MD5

28e93b35e30c579a0df7d658c88946d3
SHA1

2e17d3980744908236b46ba913c51fba5f6fc4b9
SHA256

bdc81934608291b599a35bad2943e159b88866530e6b48442fa3a3cb86d72fc4
SHA512

0a534219b17af69d691380d19b925f15dd865ad6cbda297971c492380a787f707eca8acd34e24244f52832a8299b522f17203c53833e13a2d83887c9694859e9
SSDEEP

6144:KcxtCoItpD5TiNpvh54CuD65Pum9mLwY8UJ1KkhnB:KcWnX5TiNp5t5Cd8UJMgnB

Score

N/A

Malware Config

Signatures

Files

bdc81934608291b599a35bad2943e159b88866530e6b48442fa3a3cb86d72fc4
.exe windows x86

73ce285dc589130452d5b2625948ff95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemInfo
GetLastError
WriteFile
GetEnvironmentStrings
RtlUnwind
MultiByteToWideChar
GetDateFormatA
GetCurrentProcess
IsValidCodePage
VirtualAlloc
TlsSetValue
VirtualProtect
HeapReAlloc
HeapDestroy
EnterCriticalSection
HeapCreate
GetStdHandle
InterlockedExchange
GetModuleFileNameA
GetStringTypeW
LeaveCriticalSection
ExitProcess
GetTimeZoneInformation
LCMapStringW
SetLastError
LoadLibraryA
GetTickCount
GetSystemTimeAsFileTime
IsValidLocale
GetStartupInfoA
TlsGetValue
QueryPerformanceCounter
DeleteCriticalSection
UnhandledExceptionFilter
GetCPInfo
VirtualQuery
GetCurrentThreadId
GetOEMCP
HeapAlloc
InitializeCriticalSection
HeapFree
CompareStringA
TerminateProcess
GetCurrentProcessId
GetCurrentThread
SetEnvironmentVariableA
LCMapStringA
GetComputerNameA
TlsFree
GetLocaleInfoW
GetUserDefaultLCID
SetHandleCount
GetStringTypeA
VirtualFree
WideCharToMultiByte
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetModuleHandleA
EnumSystemLocalesA
GetTimeFormatA
GetCommandLineA
CompareStringW
IsBadWritePtr
GetACP
FreeEnvironmentStringsW
GetLocaleInfoA
TlsAlloc
GetProcAddress
GetVersionExA
HeapSize
GetFileType

user32

UnionRect
CreateDialogParamA
IsDialogMessageA
GetDlgCtrlID
GetMenuContextHelpId

shell32

DragQueryFileAorW
SHGetInstanceExplorer
ExtractAssociatedIconExA
RealShellExecuteExW
SHGetFileInfoA
SHGetPathFromIDList
SHChangeNotify
ExtractIconExW
SHEmptyRecycleBinW
ShellAboutA
SHGetSettings
InternalExtractIconListW
ShellAboutW
RealShellExecuteA
SheSetCurDrive
ShellExecuteExW
ExtractIconW
DuplicateIcon

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73ce285dc589130452d5b2625948ff95

Headers

File Characteristics

Imports

kernel32

user32

shell32

Sections

.text Size: 110KB - Virtual size: 109KB

.data Size: 136KB - Virtual size: 157KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 110KB - Virtual size: 109KB

.data
Size: 136KB - Virtual size: 157KB

.rsrc
Size: 10KB - Virtual size: 9KB