3ccc3eb9c5d5c094e9c879f9492bea147d6c3bddbd0571f067e0c76fe1d4a210

General

Target

3ccc3eb9c5d5c094e9c879f9492bea147d6c3bddbd0571f067e0c76fe1d4a210
Size

280KB
MD5

75dd77290377eca7a2617defeafc5760
SHA1

7e62c9873fdd06536fccd3d302a703caf6ac2183
SHA256

3ccc3eb9c5d5c094e9c879f9492bea147d6c3bddbd0571f067e0c76fe1d4a210
SHA512

a45430994118a6ca97356d65e277b1ac1833478639dfaad4955b150944fe0ca4c2e45649c471c01b0526a9e9d8095227ae9549c592a134b953b7b1531b1c4914
SSDEEP

6144:8RwCnRz2TabPSWg276uBjcMiEJn23AM3IV8+9ABAgSvtwiAjTnp7cy97Vj:k81IgdBj

Score

N/A

Malware Config

Signatures

Files

3ccc3eb9c5d5c094e9c879f9492bea147d6c3bddbd0571f067e0c76fe1d4a210
.exe windows x86

0ba6e5936000d7b4ccf7674d4f130ab8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateSemaphoreA
GetCurrentProcess
ExitThread
GetVersionExA
GetCurrentThread
GetWindowsDirectoryA
SuspendThread
ReadFile
GetCurrentProcessId
GetSystemDirectoryA
GetComputerNameA
CreateMutexA
GetFileSize
ExitProcess
VirtualAlloc
GetStdHandle
CreateThread
GetLocalTime
SetEvent
VirtualFree
CreateFileA
GetCurrentDirectoryA
GetCurrentThreadId
LocalAlloc
CloseHandle
GetModuleHandleA
ResetEvent
DeleteFileA
CreateEventA
OutputDebugStringA
lstrcpyA
ResumeThread
WriteFile
ReleaseMutex
SetFilePointer
lstrlenA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

user32

wsprintfA
GetClassInfoExA
FindWindowA
CreateDialogParamA
RegisterClassA
PostMessageA
SendMessageA
GetForegroundWindow
GetWindow
GetActiveWindow
MessageBoxA
ShowWindow

ntdll

cos
sin
_chkstk
memcpy

ole32

CoUninitialize
CoInitialize

Sections

.text
Size: 164KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0ba6e5936000d7b4ccf7674d4f130ab8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

user32

ntdll

ole32

Sections

.text Size: 164KB - Virtual size: 161KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 100KB - Virtual size: 98KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 164KB - Virtual size: 161KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 100KB - Virtual size: 98KB

.rsrc
Size: 4KB - Virtual size: 1KB