73520da6c36bbb0c33c67850dd1587306ea3b2ff4696bc9efb64d71b5039fa18

General

Target

73520da6c36bbb0c33c67850dd1587306ea3b2ff4696bc9efb64d71b5039fa18
Size

178KB
MD5

64c9fe08ea08c83013d562c9866e7ea0
SHA1

ebf4e87a998e76e15f31fd3a0226d2607d4fa5d2
SHA256

73520da6c36bbb0c33c67850dd1587306ea3b2ff4696bc9efb64d71b5039fa18
SHA512

f768c3f195b268f8bcb3ed43449b56cbb505d1164980b6764e94df9261301c88d8b4c572295b7f9272a8e2d82eea3fb6f58870808317ca4d6146cae167b0f763
SSDEEP

3072:quGSBGIba43bu6CdUwhTL0a8p9weLXjMoeyPyhkAhOgqOzo9KtN58wJvHUhH0hGj:za8p9wgWyPyhkAhDo9KTjv0a

Score

N/A

Malware Config

Signatures

Files

73520da6c36bbb0c33c67850dd1587306ea3b2ff4696bc9efb64d71b5039fa18
.exe windows x86

6684d0f3afb050246dc3431cae9dbe60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
GetMenuStringA
ShowWindow
SetScrollPos
GetSystemMetrics
GetWindowLongA
GetClassInfoA
FindWindowA
GetWindowThreadProcessId
SetForegroundWindow
GetDesktopWindow
GetScrollInfo
GetCursorPos
GetCapture
GetMenuItemCount
GetKeyState
GetSysColor
LoadCursorA
BeginPaint
LoadIconA
WinHelpA
GetSysColorBrush

msvcrt

fflush
_strnicmp
_exit
__p__commode
memcpy
atoi
atexit
_stricmp
__p___initenv
fprintf
_adjust_fdiv
__set_app_type
_except_handler3
__setusermatherr
_onexit
__getmainargs
__p__fmode
memset
strrchr
memmove
_initterm
strcpy
strchr
_XcptFilter
_controlfp
realloc

kernel32

SetLastError
OutputDebugStringA
TerminateProcess
RemoveDirectoryA
GetThreadLocale
GetSystemDirectoryA
SetErrorMode
GetModuleHandleA
GetDiskFreeSpaceA
DuplicateHandle
GetCurrentProcess
GetTempPathW
VirtualProtect
SetCurrentDirectoryA
GetUserDefaultLangID
GetStdHandle
GetTempFileNameA
GetConsoleMode
GetModuleHandleW
Sleep

advapi32

RevertToSelf
GetTokenInformation
RegQueryInfoKeyA
CopySid
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup
CryptHashData
RegEnumKeyExA
CryptAcquireContextA
RegFlushKey
RegSetValueExW
OpenServiceW
RegOpenKeyW
InitiateSystemShutdownA
RegOpenKeyExA
OpenProcessToken
ControlService
RegQueryValueExW
IsValidSid
InitializeAcl
CryptCreateHash

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6684d0f3afb050246dc3431cae9dbe60

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

advapi32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 92KB - Virtual size: 92KB

.data Size: 33KB - Virtual size: 33KB

.rsrc Size: 38KB - Virtual size: 37KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 92KB - Virtual size: 92KB

.data
Size: 33KB - Virtual size: 33KB

.rsrc
Size: 38KB - Virtual size: 37KB