7df31ceefc47e3c172761e2dc484c2751d28d6f32b67a931f09f6c91c0f21cd5

Sharing

Copy URL Twitter E-mail

General

Target

7df31ceefc47e3c172761e2dc484c2751d28d6f32b67a931f09f6c91c0f21cd5
Size

85KB
MD5

2ee0e28b7982df603352be0c5b075296
SHA1

497edac3efc47762a9b81a4cfec6637aefd2feb4
SHA256

7df31ceefc47e3c172761e2dc484c2751d28d6f32b67a931f09f6c91c0f21cd5
SHA512

41b789eaed8582f3c35016ba85868a13c71fbe39042a8e59f114cf8e22e82485546e62acc3baeebe1c73ac2b6bfe2e0832a42f02be3ee57598a1c63b9ecea539
SSDEEP

1536:balqZHDgwTxlFfUN+yKsbAwebWwWa8wlVh8c58:JFluL9wWa8A8cu

Score

N/A

Malware Config

Signatures

Files

7df31ceefc47e3c172761e2dc484c2751d28d6f32b67a931f09f6c91c0f21cd5
.exe windows x86

c6d6438c256837ae36cc15324ca637be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegReplaceKeyW
RegQueryValueExW
RegGetKeySecurity
RegCreateKeyExW
RegReplaceKeyA
RegEnumKeyA
RegQueryValueA
RegQueryValueW
RegOpenKeyExW
RegLoadKeyW
RegEnumKeyExA
RegLoadKeyA
RegOpenKeyW
RegDeleteValueW
RegDeleteKeyW
RegEnumValueA
RegQueryInfoKeyW
RegOpenKeyA
RegEnumValueW
RegFlushKey
RegCreateKeyW
RegDeleteKeyA
RegEnumKeyExW
RegOpenKeyExA
RegDeleteValueA
RegQueryValueExA
RegQueryInfoKeyA
RegCreateKeyExA
RegEnumKeyW
RegReplaceKeyW
RegOpenKeyExW
RegOpenKeyA
RegCreateKeyExW
RegReplaceKeyA
RegDeleteValueW
RegDeleteValueA
RegEnumKeyW
RegDeleteKeyW
RegEnumValueW
RegQueryInfoKeyW
RegLoadKeyW
RegEnumValueA
RegQueryInfoKeyA
RegEnumKeyA
RegDeleteKeyA
RegEnumKeyExW
RegCreateKeyW
RegCreateKeyExA
RegQueryValueExW
RegGetKeySecurity
RegLoadKeyA
RegQueryValueExA
RegFlushKey
RegQueryValueW
RegQueryValueA
RegOpenKeyExA
RegOpenKeyW
RegEnumKeyExA

user32

DrawTextW
GetCursor
DialogBoxParamA
IsWindow
DrawIconEx
DrawTextA
GetFocus
CloseWindow
InsertMenuA
CalcMenuBar
AppendMenuW
DrawIcon
GetDC
AlignRects
CopyIcon
GetWindowTextA
GetWindowTextLengthA
EndDialog
DialogBoxParamW
AppendMenuA
CopyImage
LoadMenuA
LoadCursorA
BlockInput
GetDlgItem
CopyRect
GetMenu
CreateIcon
IsMenu

kernel32

GetCommandLineA
FreeLibrary
GetCommandLineA
GlobalFree
GetCommandLineA
Sleep
GetCommandLineA
GetStringTypeW
GetCommandLineA
lstrlenA
GetCommandLineA
GetModuleHandleA
GetCommandLineA
ExitProcess
GetCommandLineA
GetLocalTime
GetCommandLineA
GetLastError
GetCommandLineA

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.d3ta
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.r60ta
Size: 10KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.b5s
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.rs2c
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c6d6438c256837ae36cc15324ca637be

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.text Size: 14KB - Virtual size: 13KB

.d3ta Size: 49KB - Virtual size: 48KB

.r60ta Size: 10KB - Virtual size: 85KB

.b5s Size: - Virtual size: 2KB

.rs2c Size: 6KB - Virtual size: 6KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 14KB - Virtual size: 13KB

.d3ta
Size: 49KB - Virtual size: 48KB

.r60ta
Size: 10KB - Virtual size: 85KB

.b5s
Size: - Virtual size: 2KB

.rs2c
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 1024B - Virtual size: 4KB