ecafced63d029e2bcbc2f5d5e8ce00e362a4862463b30d65c3d92d9fe908cbcf

General

Target

ecafced63d029e2bcbc2f5d5e8ce00e362a4862463b30d65c3d92d9fe908cbcf
Size

121KB
MD5

0c4a10994c662aebbe9ed725b77ba487
SHA1

72320fe9464008a93c23e175f35d07a85f90e013
SHA256

ecafced63d029e2bcbc2f5d5e8ce00e362a4862463b30d65c3d92d9fe908cbcf
SHA512

cad2bb47b8058e38db70fba1b202ff7a3021a4dfc78328c6e2c89ff9031a1cb387b44dd0993ee91d743646d67dff35c9cdf39a0f2d23d6f43e273ad056747a9e
SSDEEP

3072:B2fd5lsvtCXK0FSgRj/UJZcDZNRnlOKD8IIc:EXlsVsSaU0HR58IIc

Score

N/A

Malware Config

Signatures

Files

ecafced63d029e2bcbc2f5d5e8ce00e362a4862463b30d65c3d92d9fe908cbcf
.exe windows x86

82015b270e5a4015694bc9e5bff0ba59

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetStringTypeW
GetCPInfo
GlobalAlloc
lstrcpynA
GetFileAttributesA
Sleep
FreeLibrary
GetDateFormatA
lstrcpyA
CloseHandle
GetLastError
GetCommandLineA
GetStdHandle
HeapAlloc
HeapFree
GetModuleHandleA
lstrcmpA
GetFileType
GetFileSize

advapi32

RegEnumKeyExA
RegQueryValueA
RegQueryInfoKeyW
RegDeleteValueW
RegEnumValueA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegEnumValueW
RegOpenKeyW
RegFlushKey
RegEnumKeyExW
RegCreateKeyExW
RegEnumKeyA
RegOpenKeyA
RegLoadKeyW
RegDeleteKeyW

user32

IsWindow
CalcMenuBar
CloseWindow
DrawIcon
AlignRects
CreateIcon
DialogBoxParamA
InsertMenuA
GetCursor
CopyImage
GetWindowTextA
GetMenu
CopyRect
GetDlgItem
DrawIconEx
DialogBoxParamW
LoadCursorA
LoadMenuA
DrawTextA
AppendMenuA

comctl32

ImageList_LoadImageA
ImageList_DragMove
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_Create
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_LoadImageW
ImageList_AddMasked
ImageList_GetImageRect
InitCommonControls
ImageList_Merge
ImageList_Copy
ImageList_Remove

Sections

.xpyYjA
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.GZBOk
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mWpFT
Size: 7KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.HbHrp
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82015b270e5a4015694bc9e5bff0ba59

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

Sections

.xpyYjA Size: 15KB - Virtual size: 14KB

.GZBOk Size: 93KB - Virtual size: 92KB

.mWpFT Size: 7KB - Virtual size: 137KB

.HbHrp Size: 2KB - Virtual size: 1KB

.xpyYjA
Size: 15KB - Virtual size: 14KB

.GZBOk
Size: 93KB - Virtual size: 92KB

.mWpFT
Size: 7KB - Virtual size: 137KB

.HbHrp
Size: 2KB - Virtual size: 1KB