faed1b34a22c734526228419cafc9700b105e0bf85317e411221bf421bb2b6ad

General

Target

faed1b34a22c734526228419cafc9700b105e0bf85317e411221bf421bb2b6ad
Size

928KB
MD5

79ba4ac459291a9d5a962defc4bcf03f
SHA1

09de52fd443b398a16a1e1737ac1bf942c6966d4
SHA256

faed1b34a22c734526228419cafc9700b105e0bf85317e411221bf421bb2b6ad
SHA512

bf15b709da23b3bae50e71a26f670c4d77eff7f6402b64ec474959577e9fddc4635b34344634f198404649ff8af9b3086ef0c582b29d230a204f2cddfb993375
SSDEEP

24576:lysYMXETfbWlJ0BfaqGlCUHUca7ieZyvvv:AmXELbWlJ0FapHUf7ig

Score

N/A

Malware Config

Signatures

Files

faed1b34a22c734526228419cafc9700b105e0bf85317e411221bf421bb2b6ad
.exe windows x86

bde1a7aa1912c5d079ca3c7297a27e68

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysFreeString
SysAllocString
VariantClear

advapi32

RegLoadKeyA
RegQueryValueA

kernel32

LocalFree
LeaveCriticalSection
Sleep
VirtualAlloc
HeapAlloc
InterlockedDecrement
GetThreadTimes
GetExitCodeThread
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetProcAddress
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
IsBadWritePtr
InitializeCriticalSection
EnterCriticalSection
RaiseException
InterlockedIncrement
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
lstrlenA

user32

GetWindowInfo
AllowSetForegroundWindow
IsZoomed
IsWindowVisible
GetParent
IsIconic
GetWindow
GetSysColor
RegisterClassA
CreateWindowExA
DefWindowProcA
PostQuitMessage
MoveWindow
UpdateWindow

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 852KB - Virtual size: 849KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bde1a7aa1912c5d079ca3c7297a27e68

Headers

File Characteristics

Imports

oleaut32

advapi32

kernel32

user32

Sections

.text Size: 56KB - Virtual size: 54KB

.rdata Size: 852KB - Virtual size: 849KB

.data Size: 16KB - Virtual size: 15KB

.text
Size: 56KB - Virtual size: 54KB

.rdata
Size: 852KB - Virtual size: 849KB

.data
Size: 16KB - Virtual size: 15KB