8a7f06b8a3639d6870c6a1b0aa9df9165eead05fa5226c2d86aebab2ed6ebb93

General

Target

8a7f06b8a3639d6870c6a1b0aa9df9165eead05fa5226c2d86aebab2ed6ebb93
Size

191KB
MD5

4d510c5e4b69a5165058cb571f833840
SHA1

838ecc5401790ef1aa5b036236006b9594c8e071
SHA256

8a7f06b8a3639d6870c6a1b0aa9df9165eead05fa5226c2d86aebab2ed6ebb93
SHA512

f9b73d2c8f12049b9c02324229b579106a494a64864b8a0402c5712a34019c1d05ce8162fa3756cfa57edf1b6a17847571e091e44b4dafeb32f8b66c7dfe6618
SSDEEP

3072:MgcWduyFDC7Rt23OdXfVgx7JDgJkvcMiupLGNzWUA54U8t6lMpK2DeoxQhy2M:MgcWIyFCtt2+9u7J8odiuph5Qa2ioxRN

Score

N/A

Malware Config

Signatures

Files

8a7f06b8a3639d6870c6a1b0aa9df9165eead05fa5226c2d86aebab2ed6ebb93
.exe windows x86

2730dedf41a96611d26143d56c16d9a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
StringFromGUID2
CoCreateInstance
CoFreeUnusedLibraries
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize

kernel32

InterlockedIncrement
DeleteFileW
CreateFileW
DosPathToSessionPathW
GetVolumeInformationW
GetCurrentProcessId
SetProcessAffinityMask
GetTickCount
InitializeCriticalSection
QueryPerformanceCounter
GetProcessId
GetLocaleInfoA
ProcessIdToSessionId
InterlockedExchange
WideCharToMultiByte
GetCurrentThreadId
GetVersionExA
GetProcessAffinityMask
GetFileSize
GetLastError
InterlockedDecrement
GetThreadLocale
EnumResourceTypesA
FreeLibrary
DisableThreadLibraryCalls
GetLocalTime
lstrlenA
ExitProcess
GetSystemTimeAsFileTime
GetACP
GetCurrentProcess
DeleteCriticalSection
CloseHandle
MultiByteToWideChar
WaitForSingleObject
GetModuleFileNameA
GetDiskFreeSpaceExW
DeleteFileA

gdiplus

GdipCreateHBITMAPFromBitmap
GdipCloneImage

user32

PeekMessageA
TranslateMessage
SendMessageA
PostMessageA
DispatchMessageA
wsprintfA

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegDeleteKeyA
RegSetValueA
RegCreateKeyExA
RegCreateKeyA
RegQueryValueExA
RegSetValueExA
RegCloseKey

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2730dedf41a96611d26143d56c16d9a4

Headers

File Characteristics

Imports

ole32

kernel32

gdiplus

user32

advapi32

Sections

.text Size: 111KB - Virtual size: 111KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 76KB - Virtual size: 75KB

.tls Size: 1024B - Virtual size: 220KB

.text
Size: 111KB - Virtual size: 111KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 76KB - Virtual size: 75KB

.tls
Size: 1024B - Virtual size: 220KB