da8aedb2488c487d493ccf4685d79bef0666e1372ab69e090b1154155b73227b

General

Target

da8aedb2488c487d493ccf4685d79bef0666e1372ab69e090b1154155b73227b
Size

113KB
MD5

6fcb622b5edd2df888765600c07a0e93
SHA1

0b66d7fcc7ec916501463fc0eb00665872867183
SHA256

da8aedb2488c487d493ccf4685d79bef0666e1372ab69e090b1154155b73227b
SHA512

7fa37f0770fb4f60f9b4534c37ce891381d6c1dc18582098fb0ec06f443cf389700713ee262873286b86241569825d059dfe5e10f421bd7a5cf205a4b9dcd327
SSDEEP

3072:5PdyTJYf3i0u78crbMYERoI/jyhA2bAVJ7:5PM10ho1ERbkcX7

Score

N/A

Malware Config

Signatures

Files

da8aedb2488c487d493ccf4685d79bef0666e1372ab69e090b1154155b73227b
.exe windows x86

87e751869a18dd118a92b01af6e275b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
LocalFree
GetProcAddress
lstrcatA
lstrcpyA
lstrcpynA
GetFileAttributesA
GetDriveTypeA
CloseHandle
CreateProcessA
FreeLibrary
ResetEvent
LoadLibraryA
lstrlenA
WaitForSingleObject
GetLastError
CreateEventA
SetLastError
GetSystemDirectoryA
CompareFileTime
GetSystemTimeAsFileTime
GetTickCount
SystemTimeToFileTime
GetSystemTime
lstrcmpiA
Sleep
GetVersionExA
HeapFree
HeapReAlloc
GetProcessHeap
HeapAlloc
DebugBreak
DeleteCriticalSection
InitializeCriticalSection
GetModuleHandleA
GetCommandLineA
ExitProcess
GetModuleFileNameA
GetStartupInfoA

user32

SetWindowsHookExA
MsgWaitForMultipleObjects
PeekMessageA
TranslateMessage
DispatchMessageA
UnhookWindowsHookEx
wsprintfA
CharNextA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegFlushKey
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegQueryInfoKeyA
RegEnumKeyExA
RegNotifyChangeKeyValue
RegCloseKey

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nrdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

87e751869a18dd118a92b01af6e275b3

Headers

File Characteristics

Imports

kernel32

user32

advapi32

version

Sections

.text Size: 12KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 13KB

.rsrc Size: 4KB - Virtual size: 1KB

.nrdata Size: 80KB - Virtual size: 80KB

.text
Size: 12KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 13KB

.rsrc
Size: 4KB - Virtual size: 1KB

.nrdata
Size: 80KB - Virtual size: 80KB