14328366045cf4454269e4552cc1831d2e710874196cf41e30324f3f03e4d4a5

Sharing

Copy URL Twitter E-mail

General

Target

14328366045cf4454269e4552cc1831d2e710874196cf41e30324f3f03e4d4a5
Size

344KB
MD5

f6146b318e6034ff3c97068d8bfc7651
SHA1

2df761521c592e84a72ef81d6e63a919e16c5a44
SHA256

14328366045cf4454269e4552cc1831d2e710874196cf41e30324f3f03e4d4a5
SHA512

7814e0983107f750a7f8e7c9019bc1605cf9bdab55bc4646cb66ada5cba77b3b17d7594e35c0554066a036c0c76dd5e632f98d08865d9901769fa0c3ba067873
SSDEEP

6144:x8ACXFORvElLVdU030PLTw2v95JeeX9Ob3NdV53Z6YPuAOAFfmgiXNOzhxjV55R3:mXFOxEtQ030PLc2v95xX9OLHXZ6YPuAl

Score

N/A

Malware Config

Signatures

Files

14328366045cf4454269e4552cc1831d2e710874196cf41e30324f3f03e4d4a5
.exe windows x86

28272844a80dea4a5a787bd3e3fb8363

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetModuleFileNameA
DeleteFileA
CopyFileA
WriteFile
CreateFileA
SetFileAttributesA
CreateProcessA
CloseHandle
GetCurrentProcess
SetCurrentDirectoryA
GetModuleHandleA
DeviceIoControl
HeapAlloc
GetLocalTime
FreeLibrary
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetCPInfo
MultiByteToWideChar
IsBadWritePtr
ExitProcess
GetVersion
GetLastError
GetDriveTypeA
GetLogicalDrives
GetVersionExA
GetVolumeInformationA
ReadFile
GetFileInformationByHandle
GetProcAddress
LoadLibraryA
HeapCreate
WaitForSingleObject
ResetEvent
CreateEventA
Sleep
SetPriorityClass
SetFilePointer
GetStartupInfoA
GetFileType
HeapDestroy
RtlUnwind
GetTimeZoneInformation
GetSystemTime
VirtualAlloc
HeapReAlloc
VirtualFree
TerminateProcess
HeapSize
WideCharToMultiByte
HeapFree
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle

user32

PostMessageA
LoadIconA
PostQuitMessage
GetCursorPos
LoadMenuA
GetSubMenu
ModifyMenuA
SetForegroundWindow
TrackPopupMenu
MessageBoxA
DestroyWindow
LoadCursorA
DestroyMenu
DefWindowProcA
FindWindowA
SendMessageA
wsprintfA
SetWindowPos
LoadImageA
RegisterClassExA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
GetSystemMetrics

shell32

Shell_NotifyIconA
SHChangeNotify

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyExA
RegQueryInfoKeyA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 244KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

28272844a80dea4a5a787bd3e3fb8363

Headers

File Characteristics

Imports

kernel32

user32

shell32

advapi32

version

Sections

.text Size: 88KB - Virtual size: 84KB

.rdata Size: 244KB - Virtual size: 241KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 88KB - Virtual size: 84KB

.rdata
Size: 244KB - Virtual size: 241KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 1KB