6576500cbcda2146f695a791a58010205e0fca03f97790145a2fa16ed1cbc217

General

Target

6576500cbcda2146f695a791a58010205e0fca03f97790145a2fa16ed1cbc217
Size

1.4MB
MD5

4da64683393035ace1144145c8215322
SHA1

df4b7be0743a653cfa414ef969c65980303e7c12
SHA256

6576500cbcda2146f695a791a58010205e0fca03f97790145a2fa16ed1cbc217
SHA512

0d6a86e0cabbf770bd6581094c0c6356a3015e2dd0b509dc7668436f1c0ced6ed34e88291b82496fa371b61fe15a4c1d6ed29559b0ff024d368651a1fe161f9b
SSDEEP

24576:r/8qPMK/qT7VNeYv0+yAr6WwXYARKIOoLPUZ694ledSPFlBpokY3QoQ92vmz0:r/Lt/qfVN4O6tYB/sPUZxled2Pg3tvm4

Score

N/A

Malware Config

Signatures

Files

6576500cbcda2146f695a791a58010205e0fca03f97790145a2fa16ed1cbc217
.exe windows x86

2bb1bf889e845965a1b384fd45cc5e8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetFileSize
CreateFileA
GetCurrentDirectoryA
FreeResource
CloseHandle
SizeofResource
LoadResource
FindResourceA
GetModuleHandleA
GetSystemDirectoryA
lstrcatA
DeleteFileA
WriteFile
HeapReAlloc
VirtualAlloc
HeapAlloc
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
GetVolumeInformationA
TerminateProcess
GetOEMCP
GetACP
GetCPInfo
GetProcAddress
LoadLibraryA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess

user32

GetSystemMenu
GetWindowLongA
SetWindowLongA
EnableWindow
EndDialog
SetTimer
SendMessageA
GetDlgItem
SetDlgItemTextA
SendDlgItemMessageA
SetActiveWindow
MessageBoxA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
DispatchMessageA
SetWindowPos
KillTimer
PostQuitMessage
GetClientRect
DefWindowProcA
GetWindowTextA
PostMessageA
DialogBoxParamA
wsprintfA
LoadIconA
LoadCursorA
RegisterClassA
DeleteMenu

shell32

ShellExecuteA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2bb1bf889e845965a1b384fd45cc5e8c

Headers

File Characteristics

Imports

kernel32

user32

shell32

advapi32

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB