e274f79bcc62d8aed7ed68100078a2d66db174ae07ca28cd52bba3030c7114aa

General

Target

e274f79bcc62d8aed7ed68100078a2d66db174ae07ca28cd52bba3030c7114aa
Size

52KB
MD5

6f899789911cabcc9ad23ed1a19eeb3b
SHA1

acd620ff3795fe52dec6e25ede0d6bfdbe6af378
SHA256

e274f79bcc62d8aed7ed68100078a2d66db174ae07ca28cd52bba3030c7114aa
SHA512

04f5a8cc36a00da554950ea6f997db18990938b8c288fb546b5fe1da8fe65aa45c07e23ceebc16e9ec092afccff41f5639315549386e63bb980434111e09f742
SSDEEP

768:jAVwwItkZU+xH9WG+5vSzQH4DIOUx3jQUC3UqYxId3kTmG7:jQXItkZUGl+DMUdVCoyoT

Score

N/A

Malware Config

Signatures

Files

e274f79bcc62d8aed7ed68100078a2d66db174ae07ca28cd52bba3030c7114aa
.exe windows x86

0b966055a468277cfa2a30fde9e14493

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetProcAddress
GetCurrentProcess
SetPriorityClass
RemoveDirectoryA
SetCurrentDirectoryA
CopyFileA
CreateProcessA
GetVersionExA
LoadLibraryA
RtlUnwind
WideCharToMultiByte
GetCPInfo
FlushFileBuffers
SetStdHandle
ExitProcess
TerminateProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
FreeLibrary
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
CloseHandle
GetACP
GetOEMCP
SetHandleCount
GetFileType
GetStdHandle
HeapDestroy
VirtualFree
WriteFile
GetLastError
SetFilePointer
HeapFree
HeapAlloc
VirtualAlloc

user32

CreateWindowExA
RegisterClassA
DefWindowProcA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 943B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qzootwu
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0b966055a468277cfa2a30fde9e14493

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 1024B - Virtual size: 943B

.data Size: 5KB - Virtual size: 9KB

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 28KB - Virtual size: 29KB

qzootwu Size: - Virtual size: 4KB

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 1024B - Virtual size: 943B

.data
Size: 5KB - Virtual size: 9KB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 28KB - Virtual size: 29KB

qzootwu
Size: - Virtual size: 4KB