58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de

Sharing

Copy URL

Twitter E-mail

General

Target

58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de
Size

89KB
MD5

6c3dbcda1eab2c5417b6b0005273123b
SHA1

386a20cf5dcfd342547e0982aadbc130379727ae
SHA256

58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de
SHA512

187e592256a96100b13b3a4ad279f9383932b23b036516e5467057e02eba09e8c6bab7d1d9f5b5393aa05986762a012cbeb2747f2aa782c054220fdca186e9ea
SSDEEP

1536:8A1dJ8GizQfkCyx+gZLJMmXeBz+Z5aj0B9Id0qoGpFlWpstl:8TGizFLfLhuBz+2jk80ElWpkl

Score

N/A

Malware Config

Signatures

Files

58e5808c9f8412d1eb5e3d490717d2385c548ec24357a65c9a3cad2c497747de
.exe windows x86

6126c1ffbde691b384037caeed5fc037

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
EnterCriticalSection
HeapReAlloc
CreateProcessA
InterlockedExchangeAdd
GetStartupInfoA
VirtualFree
SleepEx
lstrlenA
Sleep
GetFileAttributesW
GetModuleFileNameW
ResetEvent
ReleaseMutex
GetCommandLineA
TryEnterCriticalSection
SetEnvironmentVariableA
GetVersionExW
GetLastError
InterlockedExchange
CreateEventA
CreateThread
GetVersionExA
GlobalAlloc
IsDebuggerPresent
HeapDestroy
GlobalLock
GetCommandLineW
GetStringTypeW
HeapCreate
LocalFree
ReadFile
GetCurrentProcessId
GetFileSize
GetProcessHeap
HeapAlloc
GetSystemTimeAsFileTime
GetSystemTime
VirtualAlloc
LCMapStringW
CreateFileW
GetEnvironmentStrings
SetHandleCount
GetACP
ExitProcess
GetCPInfo
CreateEventW
GetEnvironmentStringsW
FreeEnvironmentStringsA
lstrlenW
FormatMessageW
CompareStringW
GetTapeStatus
SetStdHandle
RaiseException
InterlockedDecrement
SetUnhandledExceptionFilter
GetModuleFileNameA
GetFileAttributesA
GetFileType
LCMapStringA
WideCharToMultiByte
GetCurrentThread
GetModuleHandleW
LeaveCriticalSection
DeleteFileA
LoadLibraryA
GetThreadLocale
RegisterWaitForSingleObject
GetCurrentDirectoryA
GetUserGeoID
TlsAlloc
GetLocalTime
TerminateProcess
GetFileSizeEx
GetTickCount
GetModuleHandleA
SetErrorMode
FreeEnvironmentStringsW
GetVersion
TlsFree
UnhandledExceptionFilter
GetOEMCP
GetSystemInfo
QueryPerformanceCounter
RtlUnwind
GetCurrentThreadId
ReadFileEx
HeapSize
GetProcAddress
GetExitCodeProcess
CompareStringA
GetCurrentProcess
MultiByteToWideChar
HeapFree
FormatMessageA
WaitForSingleObjectEx
WaitForMultipleObjectsEx
DeleteCriticalSection
FindClose

user32

GetMenuState
GetCursorPos
GetSystemMetrics
EnableWindow
GetDlgItemTextA
IsWindowVisible
GetWindowDC
LoadStringA
GetWindowRect
DestroyWindow
ReleaseDC
GetMenuItemCount
TranslateMessage
IsWindowEnabled
GetDlgItemInt
GetClientRect
SetCursorPos
SetForegroundWindow
GetDCEx
GetWindowTextA
GetMenuItemID
GetWindowLongW
ShowWindow
GetDC
GetWindowTextLengthW

shlwapi

StrToIntA
PathAppendW
StrStrA
StrStrW
PathFileExistsW
PathAddBackslashW
StrStrIW
StrCmpW
StrCmpNW
SHDeleteKeyW
StrToIntW

advapi32

RegCreateKeyExA
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegCloseKey
RegCreateKeyExW
RegQueryValueExA
RegOpenKeyA

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6126c1ffbde691b384037caeed5fc037

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

advapi32

Sections

.text Size: 83KB - Virtual size: 82KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 28KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 83KB - Virtual size: 82KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 28KB

.rsrc
Size: 1024B - Virtual size: 644B