b7eb7c842213829b804b262d7dff487d97e599ffed8d084ef8e8374c9eec0fbb

General

Target

b7eb7c842213829b804b262d7dff487d97e599ffed8d084ef8e8374c9eec0fbb
Size

429KB
MD5

70c66b67b288582ff6a01b8e3bd040b0
SHA1

0c970ccc0a65e41da042b5c5de50ce77852df43e
SHA256

b7eb7c842213829b804b262d7dff487d97e599ffed8d084ef8e8374c9eec0fbb
SHA512

7717d6df321ee9539582d5622d63f86d97a0305b485369691353fd878e6f76d6edba71b783559d7b2fedbc94124f19cff93ce3291fa54228003b2ae92f787fa3
SSDEEP

1536:5uaUOcY8GxMmyqIuFsd1iHkv192XdPrgaI9aJZksNimS:5uiwkf/IuFsd2W192XFrgaIUf4mS

Score

N/A

Malware Config

Signatures

Files

b7eb7c842213829b804b262d7dff487d97e599ffed8d084ef8e8374c9eec0fbb
.exe windows x86

d4fe7d19020c43286a313f50492a520a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
GetKeyboardLayoutNameA
ChildWindowFromPoint
IsDlgButtonChecked
GetWindowTextW
SetWindowLongW
SendDlgItemMessageW
OemKeyScan
ShowCaret
GetShellWindow

advapi32

InitiateSystemShutdownA
GetServiceDisplayNameA
IsValidAcl
CryptDeriveKey
LogonUserW

kernel32

HeapCreate
GetComputerNameA
ReleaseSemaphore
lstrcmpA
InitializeCriticalSectionAndSpinCount
GlobalLock
GetCurrentDirectoryW
GlobalAlloc
GetUserDefaultLangID
SetProcessWorkingSetSize
FindFirstFileExW
MoveFileExW
IsDebuggerPresent
MultiByteToWideChar
DeleteCriticalSection
EnumResourceNamesW
SetEnvironmentVariableA
GetFileSize
InterlockedIncrement
FlushFileBuffers
UnlockFile
CompareFileTime
GetSystemTimeAdjustment
ExpandEnvironmentStringsW
SetThreadPriority
WriteConsoleInputW
GetHandleInformation
SetupComm
_hread
GetModuleFileNameW
GetACP
GetCurrentProcessId
AddAtomA
IsDBCSLeadByte
_lcreat
IsProcessorFeaturePresent

Sections

.text
Size: 42KB - Virtual size: 352KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4fe7d19020c43286a313f50492a520a

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 42KB - Virtual size: 352KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 372KB - Virtual size: 371KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 42KB - Virtual size: 352KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 372KB - Virtual size: 371KB

.rsrc
Size: 10KB - Virtual size: 9KB