77bb593d6494085a481ef8517875905f9704b30b5dcfb91cf0700e256e391b6a

General

Target

77bb593d6494085a481ef8517875905f9704b30b5dcfb91cf0700e256e391b6a
Size

66KB
MD5

66c13936c120b7cf2941713d3a01f3b0
SHA1

6c8a5dc6aafccf97da5fb12587382e24a9b0dcf3
SHA256

77bb593d6494085a481ef8517875905f9704b30b5dcfb91cf0700e256e391b6a
SHA512

610947f7d7226fc836bb46dd9cce8fce7d365ff0dfcfb768cc84e587853dfa3c94fc08a38bc63c05e2c2e4801a63e4cd926e5044b741eabe07ca743ab659bb1d
SSDEEP

1536:g7BFAXs29eu9D0S5Ox222VCgBP4W7deOfD:grl29eu9D0SYxvUCgBPt0O

Score

N/A

Malware Config

Signatures

Files

77bb593d6494085a481ef8517875905f9704b30b5dcfb91cf0700e256e391b6a
.exe windows x86

6e3f116e2dd19ad2859591d0bcc9e91f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrlenW
IsDebuggerPresent
WriteConsoleW
WriteConsoleW
DisconnectNamedPipe
WriteConsoleW
GetStdHandle
GetPriorityClass
SuspendThread
SetEvent
CopyFileW
CreatePipe
CloseHandle
ClearCommBreak
GetFileAttributesA
GetCurrentDirectoryA
GetModuleHandleA
lstrcpyW
GetStartupInfoA
GetLastError
HeapCreate

msftedit

RichListBoxWndProc
SetCustomTextOutHandlerEx
RichEditWndProc
RichComboBoxWndProc

shell32

StrChrA
ShellMessageBoxA
DuplicateIcon
SHGetMalloc
DllUnregisterServer
SHGetSettings
DragFinish
SHGetDiskFreeSpaceA
ShellAboutA
DragQueryFileA
ExtractIconA
SHFree
DragAcceptFiles

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6e3f116e2dd19ad2859591d0bcc9e91f

Headers

File Characteristics

Imports

kernel32

msftedit

shell32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 776B

.rsrc Size: 57KB - Virtual size: 72KB

.rdata Size: 512B - Virtual size: 132B

.impdata Size: 512B - Virtual size: 80B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 776B

.rsrc
Size: 57KB - Virtual size: 72KB

.rdata
Size: 512B - Virtual size: 132B

.impdata
Size: 512B - Virtual size: 80B