51f7982e20f2627088fceff295e58943ab55add3a1410aa3a0bb70e61e77dfd0

Sharing

Copy URL Twitter E-mail

General

Target

51f7982e20f2627088fceff295e58943ab55add3a1410aa3a0bb70e61e77dfd0
Size

113KB
MD5

08a15757334a7e92779015993b7170b7
SHA1

3eeda83bf6fdcb58d97010de3434751d1bffd4e0
SHA256

51f7982e20f2627088fceff295e58943ab55add3a1410aa3a0bb70e61e77dfd0
SHA512

88db18a545cacaf02d2a26e69b59091dc540dc9229be9d30fefb5f6493af1535d593ea52f9a29c0223099074cc94e38ffeb7bdd6d1a0f3eba013c02284d7ad72
SSDEEP

1536:GKoJbtbubGTiNFf8jC5z8bMtEIekGOe3DptCAUbp2gMaekWKFy+eXiYOg8phnO:GTrT2xqAEIeXVtCAUbp2XkWAy+0DmnO

Score

N/A

Malware Config

Signatures

Files

51f7982e20f2627088fceff295e58943ab55add3a1410aa3a0bb70e61e77dfd0
.exe windows x86

6f7a3b1f09568097afda22e693345446

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

_exit
__setusermatherr
__p__fmode
_initterm
_except_handler3
__p__commode
_controlfp
_adjust_fdiv
_XcptFilter
__getmainargs
__set_app_type
__p___initenv

kernel32

lstrcpynA
GetFullPathNameA
SetThreadLocale
GetModuleHandleA
GetTempPathW
GetCurrentDirectoryA
LoadResource
RtlUnwind
GetSystemTimeAsFileTime
MultiByteToWideChar
GetLocaleInfoW
FileTimeToLocalFileTime
GetCurrentProcess
lstrlenW
GetFileAttributesA
DeleteFileW
FlushFileBuffers
SetLastError
GetCommandLineA
GetUserDefaultLangID
DuplicateHandle
SetFileAttributesA
IsDebuggerPresent
GetStartupInfoW
InterlockedExchange
GetEnvironmentStrings
GetModuleHandleW
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeExA
GetExitCodeProcess
SetCurrentDirectoryA
TerminateProcess
GetThreadLocale
Sleep
IsBadCodePtr
FreeEnvironmentStringsA
lstrcmpiA
VirtualProtect
WritePrivateProfileStringA
lstrcpyA
WriteConsoleA
GetProcessHeap
GetModuleFileNameA
GetVersion
GetCPInfo
DeleteFileA
SetFileTime
GetFileType
CopyFileA
GetTempPathA
LocalFileTimeToFileTime
GetLocaleInfoA
GlobalReAlloc
MoveFileA
GetConsoleMode
lstrcmpiW
GetCommandLineW
SetStdHandle
FileTimeToDosDateTime

advapi32

CryptCreateHash
RegFlushKey
SetSecurityDescriptorDacl
IsValidSid
CryptDestroyHash
SetSecurityDescriptorOwner
RegDeleteValueW
InitializeSecurityDescriptor
SetSecurityDescriptorGroup
RegOpenKeyExW
GetLengthSid
QueryServiceStatus
RegEnumValueA
RevertToSelf
RegQueryValueA
CryptReleaseContext
CopySid
DeregisterEventSource
RegQueryInfoKeyW
RegQueryValueExA
CryptAcquireContextA
AdjustTokenPrivileges
RegSetValueExA
OpenSCManagerW
RegCreateKeyExA
FreeSid
RegOpenKeyW
ControlService
RegEnumKeyExA
GetSecurityDescriptorDacl
CryptHashData
RegDeleteKeyW
RegDeleteValueA
InitializeAcl

user32

SetActiveWindow
CharNextA
SetWindowsHookExA
LoadIconA
WinHelpA
CreateWindowExA
ReleaseDC
DrawFrameControl
SetScrollRange
GetSubMenu
SetWindowTextA
SetMenu
WindowFromPoint
SetWindowLongA
IsRectEmpty
GetTopWindow
IsWindowEnabled
IsZoomed
OffsetRect
ShowCursor
IsWindowVisible
DeleteMenu
IsIconic
SetClipboardData
GetMessagePos
SetScrollPos
DispatchMessageA
SystemParametersInfoA
MessageBeep
GetCapture
GetForegroundWindow
EmptyClipboard
EqualRect
GetClientRect
WaitMessage
ShowWindow
SetWindowPos
DrawEdge
DestroyIcon
InvalidateRect
IntersectRect
GetScrollPos
GetDlgItem

Sections

.text
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f7a3b1f09568097afda22e693345446

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

user32

Sections

.text Size: 1024B - Virtual size: 828B

.rdata Size: 56KB - Virtual size: 55KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 34KB - Virtual size: 34KB

.text
Size: 1024B - Virtual size: 828B

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 34KB - Virtual size: 34KB