78c83254fbaa53127790a9062c79d31a53eb43e228d0fa68360033f2caaf4ff5

General

Target

78c83254fbaa53127790a9062c79d31a53eb43e228d0fa68360033f2caaf4ff5
Size

676KB
MD5

04a8921dab7fc7e95b78909362a0a5a0
SHA1

1703a92e17c404295b5de5a9bcbb3c53fc410647
SHA256

78c83254fbaa53127790a9062c79d31a53eb43e228d0fa68360033f2caaf4ff5
SHA512

cb35a8822c9a98091922c65b9f497362543cfc6eabd83d13d82b8e858d48c4facb67b2dedb7d1e5c113c2bec178e9932365ff244020d912c91ed97a701d1d983
SSDEEP

12288:1H+S+gkYRRkV/BM2StKyhGF0FSRI1Lq8hX5yYf97jciZ:1H+0O/C2mKy0kSRIF97o

Score

N/A

Malware Config

Signatures

Files

78c83254fbaa53127790a9062c79d31a53eb43e228d0fa68360033f2caaf4ff5
.exe windows x86

3e783184eeaff005d739f64408b19222

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSetInformation
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetLastError
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
GetStartupInfoA
InterlockedCompareExchange
Sleep
InterlockedExchange
GetProcessHeap
GetTickCount
GetCommandLineW
UnhandledExceptionFilter

msvcrt

__set_app_type
_controlfp
__p__commode
__setusermatherr
fwprintf
_iob
towupper
_except_handler4_common
?terminate@@YAXXZ
__p__fmode
_amsg_exit
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
memset

fvewiz

FveuiWizard
FveuipClearFveWizOnStartup

ole32

CoUninitialize
CoInitialize

shell32

CommandLineToArgvW
ShellExecuteW

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 580KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3e783184eeaff005d739f64408b19222

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

fvewiz

ole32

shell32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 888B

.rsrc Size: 89KB - Virtual size: 88KB

.reloc Size: 580KB - Virtual size: 2.3MB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 888B

.rsrc
Size: 89KB - Virtual size: 88KB

.reloc
Size: 580KB - Virtual size: 2.3MB