d3b0d750edb637c1f986113257c3bdb485fc0237e032e9b58a9c38c81d89c1a7

General

Target

d3b0d750edb637c1f986113257c3bdb485fc0237e032e9b58a9c38c81d89c1a7
Size

91KB
MD5

7f7ecbf5fdd0a6749bcdcff62c47550e
SHA1

5a195c61c720577a38542663c66be7858083aefc
SHA256

d3b0d750edb637c1f986113257c3bdb485fc0237e032e9b58a9c38c81d89c1a7
SHA512

2c1412cb47e59109f5d42f102a449d4c626a9892e95fada064b8153e0f894021704957d6321054cbd014a82b4d30d62b2a6df7335ae34ea1c2a4763c1d8acc9f
SSDEEP

1536:rIk6ysnaX1CHRFEegRPQJHSe/ZMKE6Bf/YsXg4vqSocMJ:rX6yG4UEFgbMUftdq

Score

N/A

Malware Config

Signatures

Files

d3b0d750edb637c1f986113257c3bdb485fc0237e032e9b58a9c38c81d89c1a7
.exe windows x86

f9788f14703d1fb6b81099efdc781eb2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegReplaceKeyW
RegOpenKeyExW
RegQueryInfoKeyW
RegEnumValueA
RegQueryValueW
RegDeleteValueA
RegEnumKeyW
RegOpenKeyW
RegGetKeySecurity
RegCreateKeyExW
RegCreateKeyW
RegOpenKeyExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegDeleteKeyW
RegQueryInfoKeyA
RegEnumValueW
RegEnumKeyExA
RegReplaceKeyA

kernel32

GetStringTypeA
GetModuleHandleA
GetCPInfo
HeapFree
Sleep
lstrlenA
GlobalFree
DeleteFileA
GlobalAlloc
SetLastError
lstrcpyA
WideCharToMultiByte
HeapAlloc
GetLocalTime
GetFileSize
FreeLibrary
GetStdHandle
lstrcmpiA
GetDateFormatA

user32

EndDialog
CloseWindow
AlignRects
GetCursor
CopyRect
AppendMenuA
GetWindowTextA
GetMenu
DrawIcon
DialogBoxParamW
DrawTextW
DrawTextA
IsWindow
GetFocus
GetWindowTextLengthA
BlockInput
DialogBoxParamA
CopyIcon
CopyImage
IsMenu
BlockInput
DrawTextW
GetCursor
LoadMenuA
GetWindowTextLengthA
GetMenu
DrawIcon
CopyRect
DrawTextA
GetDlgItem
LoadCursorA
InsertMenuA
DialogBoxParamA

comctl32

ImageList_Read
ImageList_Destroy
ImageList_DrawEx
ImageList_DragLeave
ImageList_AddIcon
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_DragMove
InitCommonControls
ImageList_GetImageCount
ImageList_LoadImageW
ImageList_GetIcon
ImageList_Merge
ImageList_Copy
ImageList_DragShowNolock
ImageList_Remove
ImageList_LoadImage

Sections

.waLIuS
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tSmC
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.phwk
Size: 6KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Elow
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9788f14703d1fb6b81099efdc781eb2

Headers

File Characteristics

Imports

advapi32

kernel32

user32

comctl32

Sections

.waLIuS Size: 10KB - Virtual size: 10KB

.tSmC Size: 68KB - Virtual size: 68KB

.phwk Size: 6KB - Virtual size: 101KB

.Elow Size: 2KB - Virtual size: 1KB

.waLIuS
Size: 10KB - Virtual size: 10KB

.tSmC
Size: 68KB - Virtual size: 68KB

.phwk
Size: 6KB - Virtual size: 101KB

.Elow
Size: 2KB - Virtual size: 1KB