1629164076e06bd17895511914c84fc6527d34fcded6a2d2ecad3fe24dce121c

Sharing

Copy URL Twitter E-mail

General

Target

1629164076e06bd17895511914c84fc6527d34fcded6a2d2ecad3fe24dce121c
Size

80KB
MD5

615b04e4728d625fec3820f5f834c8c9
SHA1

8f3f4b6457f42b6e086bf2415ca62042f7c4512a
SHA256

1629164076e06bd17895511914c84fc6527d34fcded6a2d2ecad3fe24dce121c
SHA512

2c6537d2573d77a213a0574a53df3086ead2eff2410ccb9deaa0df7009cbcad62b8a5610ebf22c6c67a43153d7654c9ee39b3c73439ff087fb0cb28575fda811
SSDEEP

768:pio+hXHEE5pqE1tEAszF2M7t21wAN2SxuXQGZLc+Oqo7SN1ZePYHYVWs7kn:soWkCqE16tI1t2KIROtGZeg4Vry

Score

N/A

Malware Config

Signatures

Files

1629164076e06bd17895511914c84fc6527d34fcded6a2d2ecad3fe24dce121c
.exe windows x86

b245c5331c45b57a3d2cbd5b4f255730

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
OpenFileMappingA
CreateThread
GetLastError
GetStdHandle
DeleteAtom
FindAtomA
CopyFileExW
ReadConsoleA
GlobalFree
CreateProcessA
GetComputerNameA
ReadFile
Sleep
CreateProcessA
DeleteFileW
GetLastError
CreateThread
GetFileSize
GetConsoleMode
DeleteFileA
CreateDirectoryA
GetCPInfo
CopyFileW
WriteFile
DeleteAtom
CopyFileA
FindAtomA
GetFileTime
GlobalFree
SetLastError
DeleteFileW
Sleep
OpenFileMappingA
ExitThread
GlobalFree
GetLastError
CopyFileExA
GetCommandLineA
GetConsoleMode
ReadFile
WriteFile
CreateDirectoryA
GetStdHandle
CopyFileExW
GetComputerNameA
CopyFileA
GetCPInfo

advapi32

RegDeleteValueA
RegGetKeySecurity
RegOpenKeyW
RegQueryInfoKeyA
RegCreateKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegOpenKeyExA
RegEnumKeyW
RegQueryValueA
RegQueryInfoKeyA
RegEnumKeyW
RegOpenKeyW
RegDeleteValueW
RegOpenKeyExW
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyA
RegReplaceKeyA
RegLoadKeyW
RegQueryValueA
RegCreateKeyW
RegFlushKey
RegReplaceKeyW
RegQueryInfoKeyW
RegEnumKeyA
RegEnumValueW

user32

LoadMenuA
GetDC
AppendMenuA
GetDlgItem
CopyImage
IsWindow
IsMenu
DialogBoxParamW
GetFocus
AlignRects
DrawIcon

Sections

CODE
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.qgdata
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b245c5331c45b57a3d2cbd5b4f255730

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

CODE Size: 4KB - Virtual size: 2KB

.qgdata Size: 52KB - Virtual size: 49KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 2KB

.edata Size: 4KB - Virtual size: 29KB

CODE
Size: 4KB - Virtual size: 2KB

.qgdata
Size: 52KB - Virtual size: 49KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 2KB

.edata
Size: 4KB - Virtual size: 29KB