caa42f6c72b05a972279674fd31c3b455b14039c0e0d394b7a85b0519ef002e7

General

Target

caa42f6c72b05a972279674fd31c3b455b14039c0e0d394b7a85b0519ef002e7
Size

185KB
MD5

3e0c6398eeeec21afe1fe99a1faf0b45
SHA1

d704e067ab6c595f860436d99eb12d2f0a47cf9e
SHA256

caa42f6c72b05a972279674fd31c3b455b14039c0e0d394b7a85b0519ef002e7
SHA512

7e7429bd386868969a5a763cd93feabfdd57fa462397a1f0205fe3407ca27ec2bf66f347fe37dfd7d93bd0677974dcc055695c87e5a9088be82da4215f84a8aa
SSDEEP

3072:QupBi6pxfRK0uvDnfIVOywu1MghVg8PCDrx0zIbWnZT3DJRUVAfK0lYP44t6giR:JXf40uvLry1MWPCHqzIbAZlfK2Yrt6v

Score

N/A

Malware Config

Signatures

Files

caa42f6c72b05a972279674fd31c3b455b14039c0e0d394b7a85b0519ef002e7
.exe windows x86

9c040ef205fe83099519bcac7fb03fad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA
RegQueryValueA
RegOpenKeyExA
RegReplaceKeyA
RegDeleteKeyW
RegReplaceKeyW
RegCreateKeyExW
RegCreateKeyW
RegEnumKeyExA
RegDeleteKeyA
RegEnumValueW
RegEnumValueA
RegQueryValueExA
RegLoadKeyA
RegDeleteValueW

kernel32

GetLocalTime
GetDateFormatA
DeleteFileA
lstrcmpiA
GetCommandLineA
GetFileSize
GlobalFree
GlobalAlloc
lstrcmpA
lstrcpynA
GetStringTypeA
GetCPInfo
Sleep
GetStdHandle
GetStringTypeW
GetLastError

comctl32

ImageList_EndDrag
ImageList_Read
ImageList_LoadImage
ImageList_GetIconSize
InitCommonControls
ImageList_Copy
ImageList_GetImageCount
ImageList_DragMove
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_Create
ImageList_GetDragImage
ImageList_Replace
ImageList_AddMasked
ImageList_GetIcon
ImageList_LoadImageW

user32

DrawTextA
LoadMenuA
InsertMenuA
DrawIcon
CalcMenuBar
GetWindowTextA
LoadCursorA
IsMenu
GetDC
DrawTextW
DrawIconEx
GetDlgItem
CopyImage
DialogBoxParamW
GetFocus
GetCursor
AlignRects

Sections

.mElE
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.yPID
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tRkf
Size: 7KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.LVMRKi
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Mtby
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c040ef205fe83099519bcac7fb03fad

Headers

File Characteristics

Imports

advapi32

kernel32

comctl32

user32

Sections

.mElE Size: 15KB - Virtual size: 15KB

.yPID Size: 156KB - Virtual size: 156KB

.tRkf Size: 7KB - Virtual size: 212KB

.LVMRKi Size: 1024B - Virtual size: 1KB

.Mtby Size: 1024B - Virtual size: 2KB

.mElE
Size: 15KB - Virtual size: 15KB

.yPID
Size: 156KB - Virtual size: 156KB

.tRkf
Size: 7KB - Virtual size: 212KB

.LVMRKi
Size: 1024B - Virtual size: 1KB

.Mtby
Size: 1024B - Virtual size: 2KB