28e7a639f0247b7ff18d7c3a18b8ca21edd61d138aba49727d334a501fd3d8e7

General

Target

28e7a639f0247b7ff18d7c3a18b8ca21edd61d138aba49727d334a501fd3d8e7
Size

185KB
MD5

f82c905870462d616e737f2dfd69a084
SHA1

982724622e88de28b2871f76205ac23449e59516
SHA256

28e7a639f0247b7ff18d7c3a18b8ca21edd61d138aba49727d334a501fd3d8e7
SHA512

2920c6e330a4a989e9b242708c57ee981e9244c42c21998c99916ee1b586f1ae28a68d4bc69b8d5ff6d5ae6b6748c49817dcc5a74771091447b53fd9f2dcb2bf
SSDEEP

3072:QupBi6pxfRK0uvDnfIVOywu1MghVg8PCDrx0zIbWnZT3DJRUVAfK0lYP44t6giL:JXf40uvLry1MWPCHqzIbAZlfK2Yrt6V

Score

N/A

Malware Config

Signatures

Files

28e7a639f0247b7ff18d7c3a18b8ca21edd61d138aba49727d334a501fd3d8e7
.exe windows x86

9c040ef205fe83099519bcac7fb03fad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA
RegQueryValueA
RegOpenKeyExA
RegReplaceKeyA
RegDeleteKeyW
RegReplaceKeyW
RegCreateKeyExW
RegCreateKeyW
RegEnumKeyExA
RegDeleteKeyA
RegEnumValueW
RegEnumValueA
RegQueryValueExA
RegLoadKeyA
RegDeleteValueW

kernel32

GetLocalTime
GetDateFormatA
DeleteFileA
lstrcmpiA
GetCommandLineA
GetFileSize
GlobalFree
GlobalAlloc
lstrcmpA
lstrcpynA
GetStringTypeA
GetCPInfo
Sleep
GetStdHandle
GetStringTypeW
GetLastError

comctl32

ImageList_EndDrag
ImageList_Read
ImageList_LoadImage
ImageList_GetIconSize
InitCommonControls
ImageList_Copy
ImageList_GetImageCount
ImageList_DragMove
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_Create
ImageList_GetDragImage
ImageList_Replace
ImageList_AddMasked
ImageList_GetIcon
ImageList_LoadImageW

user32

DrawTextA
LoadMenuA
InsertMenuA
DrawIcon
CalcMenuBar
GetWindowTextA
LoadCursorA
IsMenu
GetDC
DrawTextW
DrawIconEx
GetDlgItem
CopyImage
DialogBoxParamW
GetFocus
GetCursor
AlignRects

Sections

.mElE
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.yPID
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tRkf
Size: 7KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.LVMRKi
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Mtby
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c040ef205fe83099519bcac7fb03fad

Headers

File Characteristics

Imports

advapi32

kernel32

comctl32

user32

Sections

.mElE Size: 15KB - Virtual size: 15KB

.yPID Size: 156KB - Virtual size: 156KB

.tRkf Size: 7KB - Virtual size: 212KB

.LVMRKi Size: 1024B - Virtual size: 1KB

.Mtby Size: 1024B - Virtual size: 2KB

.mElE
Size: 15KB - Virtual size: 15KB

.yPID
Size: 156KB - Virtual size: 156KB

.tRkf
Size: 7KB - Virtual size: 212KB

.LVMRKi
Size: 1024B - Virtual size: 1KB

.Mtby
Size: 1024B - Virtual size: 2KB