16d7fb2369a13661de7976a2b11e71e76546754dcd1ca625bb9550a91934c70e

General

Target

16d7fb2369a13661de7976a2b11e71e76546754dcd1ca625bb9550a91934c70e
Size

134KB
MD5

e9e7dba98717318cfb606041b563f887
SHA1

261b28e4b5876fdbcbce0561187c9914d3d5ed01
SHA256

16d7fb2369a13661de7976a2b11e71e76546754dcd1ca625bb9550a91934c70e
SHA512

7d1de2851257079921975b9324757016815422cfd1e5a2b4aa41e355c243434a045f1b57cfe57c710a9f757bac3b6d39f8a30e6a948200700f251c92cc3b41c6
SSDEEP

3072:GmZ9TuW6+u5l4bfz/xdiXfor94U+AyzgRkE055yT1:V9Tp6+uurx8mkER

Score

N/A

Malware Config

Signatures

Files

16d7fb2369a13661de7976a2b11e71e76546754dcd1ca625bb9550a91934c70e
.exe windows x86

83445a85dd147f5f751d3d5a9b129a89

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
VirtualAlloc
GetTickCount
SetErrorMode
GetCurrentProcess
TerminateProcess
GetModuleHandleA
GetCurrentProcessId
GetCurrentThreadId

oleaut32

SafeArrayGetUBound
SafeArrayCreate
SysFreeString
VariantClear
GetActiveObject
SysAllocStringByteLen

msvcrt

_acmdln
_XcptFilter
_adjust_fdiv
_beep
_access
_chdir
_controlfp
__p__commode
exit
_exit
_assert
_atoldbl
_except_handler3
__getmainargs
__p__fmode
_c_exit
_cabs
__setusermatherr
__set_app_type
_atoi64
_initterm

advapi32

RegQueryValueExW
RegOpenKeyExA
RegOpenKeyExW
RegCloseKey
WmiReceiveNotificationsA
RegQueryValueExA
WmiSetSingleItemW

Sections

.textbss
Size: - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83445a85dd147f5f751d3d5a9b129a89

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

oleaut32

msvcrt

advapi32

Sections

.textbss Size: - Virtual size: 188KB

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 112KB - Virtual size: 111KB

.rsrc Size: 5KB - Virtual size: 5KB

.textbss
Size: - Virtual size: 188KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 112KB - Virtual size: 111KB

.rsrc
Size: 5KB - Virtual size: 5KB