987786b393b953b82c51cbb4ad7b5bec4676af7f0b502209745e284c8f146092

General

Target

987786b393b953b82c51cbb4ad7b5bec4676af7f0b502209745e284c8f146092
Size

228KB
MD5

b9026f0ae08a630f8fe211c778398133
SHA1

5fe68390fd01cbbdb6f9aa5d67e83c6accaf69d2
SHA256

987786b393b953b82c51cbb4ad7b5bec4676af7f0b502209745e284c8f146092
SHA512

01413358b315df81858863eb852f533c3de500c75b1aaf0b1d5222e7152b4ed1f1a5375ccaa1e86b3c6f4d8cf0b51b2ad8fade3f547036ded80c8c9278538629
SSDEEP

3072:25jedSZ57g6Wz9rcvQvg18CaWsDyiZtgZp1XOK2FnOqr:cg6upHI182s2yWZ+cqr

Score

N/A

Malware Config

Signatures

Files

987786b393b953b82c51cbb4ad7b5bec4676af7f0b502209745e284c8f146092
.dll windows x86

4e915138c0fd9a887fd14ab4d7164ae1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
CompareStringA
DeleteFileW
lstrcatA
CopyFileA
CopyFileExA
WriteFile
ExitProcess
DeleteFileA
FindClose
GetPriorityClass
OpenFileMappingA
GetCommandLineA
GetCPInfo
lstrcmpA
ReadFile
GetFileTime
GetFileType
OpenFile
GlobalFree
CreateDirectoryA
HeapAlloc

user32

DrawTextA
GetScrollPos
CreateIcon
DrawIcon
DrawTextW
GetCursor
GetScrollInfo
DialogBoxParamA
DialogBoxParamW
IsMenu
CopyIcon
DrawIconEx
CloseWindow
GetWindowTextLengthA
AlignRects
InsertMenuA
GetDC
LoadCursorA
GetDlgItem

advapi32

RegDeleteValueA
RegQueryInfoKeyA
RegQueryValueA
RegOpenKeyW
RegEnumKeyA
RegQueryInfoKeyW
RegCreateKeyExW
RegLoadKeyA
RegEnumKeyW
RegCreateKeyA
RegQueryValueW
RegQueryValueExW
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExA
RegEnumValueA
RegQueryValueExA
RegDeleteKeyW
RegEnumKeyExW
RegEnumKeyExA

Sections

.kgea
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cnbe
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kmbm
Size: 156KB - Virtual size: 524KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nhalo
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e915138c0fd9a887fd14ab4d7164ae1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.kgea Size: 32KB - Virtual size: 32KB

.cnbe Size: 34KB - Virtual size: 34KB

.kmbm Size: 156KB - Virtual size: 524KB

.nhalo Size: 3KB - Virtual size: 3KB

.kgea
Size: 32KB - Virtual size: 32KB

.cnbe
Size: 34KB - Virtual size: 34KB

.kmbm
Size: 156KB - Virtual size: 524KB

.nhalo
Size: 3KB - Virtual size: 3KB