6c77907065a5d8cd108c79f3347892ac52ba80075a458c56f4089ce8250dc07c

General

Target

6c77907065a5d8cd108c79f3347892ac52ba80075a458c56f4089ce8250dc07c
Size

48KB
MD5

6f59197263a87402a6db6a3099361b05
SHA1

8487e8317a1aa948fd6ba097048fc1b5505ae987
SHA256

6c77907065a5d8cd108c79f3347892ac52ba80075a458c56f4089ce8250dc07c
SHA512

a672a3c05c6b6cf5ef20c44d661f2caac72a6e51a666b55471e6ee13ad280778ca8790811e1a0e20c80598088e62254d47c12568f196389caf57d2ff457b8073
SSDEEP

768:ClIF17WSl/yIla9GF8j+zJJAcf2J9po6oQYk4sK:yklaWS0/ATx4

Score

N/A

Malware Config

Signatures

Files

6c77907065a5d8cd108c79f3347892ac52ba80075a458c56f4089ce8250dc07c
.exe windows x86

d5f560c139e43a88531852b0734eb2e5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
_initterm
strtok
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
_c_exit

advapi32

LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
AdjustTokenPrivileges

kernel32

GetLastError
lstrcmpiA
GetModuleHandleA
GetStartupInfoA
GetVersionExA
GetCurrentProcess
CloseHandle
SleepEx
CreateMutexA

gdi32

GetStockObject

user32

SetForegroundWindow
LockSetForegroundWindow
MessageBoxA
CreateDialogParamA
GetDlgItem
SendMessageA
ShowWindow
DestroyWindow
ExitWindowsEx
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
DefWindowProcA
PostQuitMessage

comctl32

ord17

ole32

CoCreateInstance
CoInitializeEx
CoUninitialize

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d5f560c139e43a88531852b0734eb2e5

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

comctl32

ole32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 32B

.rsrc Size: 2KB - Virtual size: 1KB

.ndata Size: 20KB - Virtual size: 20KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 32B

.rsrc
Size: 2KB - Virtual size: 1KB

.ndata
Size: 20KB - Virtual size: 20KB