b5a7c6c257ebd0a63703824a959d9466dac0e29da68a6c710a9fcbdb14fbcede

General

Target

b5a7c6c257ebd0a63703824a959d9466dac0e29da68a6c710a9fcbdb14fbcede
Size

144KB
MD5

34cff3e5549800f6013f669ca6cb3300
SHA1

f5bbe34e36ff08f3c7ceb56a5222cf7b80a04807
SHA256

b5a7c6c257ebd0a63703824a959d9466dac0e29da68a6c710a9fcbdb14fbcede
SHA512

825ceb40d807ba36bc6e8a5f3831ab3b59cb9bab1db195365e4cb25b29e45622f0bca0accef1a23f22134b103ad64d99976aa56d5cb288eac56b6c490bd37693
SSDEEP

3072:ae8tQgIHm2sifZP96oSOEz7LzIV2sNSigJ+CWM8DPG2j:a1RGFBRl0XzjIVD8CMO+2j

Score

N/A

Malware Config

Signatures

Files

b5a7c6c257ebd0a63703824a959d9466dac0e29da68a6c710a9fcbdb14fbcede
.exe windows x86

a0bad8470143311cab2a24ff3d801dd1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
MultiByteToWideChar
lstrlenA
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetStringTypeW
GetModuleFileNameA
WideCharToMultiByte
OutputDebugStringA
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
WriteFile
VirtualFree
HeapCreate
RtlUnwind
GetLastError
GetFileAttributesA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
RaiseException
HeapAlloc
HeapReAlloc
TerminateProcess
GetCurrentProcess
HeapSize
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy

user32

SendMessageA
FindWindowExA

advapi32

RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA

shell32

ShellExecuteA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetMalloc

ole32

CoInitialize
CoCreateInstance
CoUninitialize

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a0bad8470143311cab2a24ff3d801dd1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

Sections

.text Size: 44KB - Virtual size: 40KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 11KB

.rsrc Size: 72KB - Virtual size: 72KB

.text
Size: 44KB - Virtual size: 40KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 72KB - Virtual size: 72KB