bdc379093fa7d8b28d1270b739780b3479786514ecb6fe83eabd4bef52327a91

Sharing

Copy URL

Twitter E-mail

General

Target

bdc379093fa7d8b28d1270b739780b3479786514ecb6fe83eabd4bef52327a91
Size

1.8MB
MD5

478bcdea5614bacc7fe40694a4305133
SHA1

c34ede1a24c43a4a9cb4de6e90853e3140995293
SHA256

bdc379093fa7d8b28d1270b739780b3479786514ecb6fe83eabd4bef52327a91
SHA512

7a9b6d36015ca8b817fe9d4d47a9e459b5d7e7161ed22d8ba2f266793a4a7b648986dfd114f1a44c9b572f3683705434d7b225d597b3c2d1334bc3d2fad2c4a3
SSDEEP

24576:uMKLGS5tgvx9cXWzJN+2z0Iiao6+Hr9fEwXMeDsIMwTZad/6XExB9m0hYqwjS6xd:iN5Cb0Ifo3L9fEbbwT+/Nm1qOS67r

Score

N/A

Malware Config

Signatures

Files

bdc379093fa7d8b28d1270b739780b3479786514ecb6fe83eabd4bef52327a91
.exe windows x86

f77e9449a59c93d2bf7b9a8d1ed594a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA

kernel32

GetModuleHandleA
GetCurrentProcessId
GetCommandLineA
GetTickCount
GetVersion
GetCurrentThread
GetLastError
GetCurrentThreadId
ExitProcess
HeapAlloc
GetProcessHeap
GetOEMCP
VirtualAlloc
FindResourceA
Sleep
VirtualFree
UnmapViewOfFile
IsValidCodePage
SizeofResource
SetStdHandle
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
MapViewOfFile
RaiseException
WideCharToMultiByte
GetCommandLineW
LockResource
GetEnvironmentStrings
RemoveDirectoryA
GetEnvironmentStringsW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
CreateFileA
GetFileType
CreateEventA
CreateFileW
CreateEventW
GlobalLock
WaitForMultipleObjects
FindFirstFileW
CompareStringA
FindFirstFileA
lstrcmpA
CompareStringW
GetSystemInfo
GetProcAddress
DeleteFileW
GetEnvironmentVariableA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
WriteConsoleW
GetLocaleInfoA
SetEndOfFile
WriteConsoleA
TerminateProcess
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
IsDebuggerPresent
GetModuleFileNameW
InitializeCriticalSection
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
GetTimeZoneInformation
LocalFree
SetEvent
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetCPInfo
FreeEnvironmentStringsW
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapFree
HeapDestroy
FindNextFileA
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
GetStdHandle

user32

SetCursor
GetClientRect
SendMessageA
InvalidateRect
SystemParametersInfoA
GetSysColor
MessageBoxA
EndDialog
GetDesktopWindow
LoadCursorA
GetDlgItem
DispatchMessageA
SetWindowTextA
SetWindowLongA
SetCapture
GetSystemMetrics
DefWindowProcA
BeginPaint
SetFocus
GetSubMenu
CreateWindowExA
GetWindowLongA
EnableMenuItem
TranslateMessage
ShowWindow
DestroyWindow
GetKeyState
ReleaseDC
GetDC
EndPaint
SetWindowPos
PostQuitMessage
SetForegroundWindow

Sections

.text
Size: 1.7MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f77e9449a59c93d2bf7b9a8d1ed594a9

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 1.7MB - Virtual size: 2.1MB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 11KB - Virtual size: 10KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 1.7MB - Virtual size: 2.1MB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 32KB - Virtual size: 31KB