edfc93e49352133309d00f3e283e083518bc5884e61ce0fdd160859cd8e24460

General

Target

edfc93e49352133309d00f3e283e083518bc5884e61ce0fdd160859cd8e24460
Size

799KB
MD5

580e3da6e9e993aaf788f983397980b8
SHA1

4e07f6754db6033b32ad10597f78676ae86e9c7f
SHA256

edfc93e49352133309d00f3e283e083518bc5884e61ce0fdd160859cd8e24460
SHA512

881072ee48dfe57f781fa0ade7a569e047e793eca72bac8298be7f6dd79e0214ef8d0d028545f111bfa50f95581e6642eef21a1ba2904f591210f218f94c021c
SSDEEP

24576:WLv2P0tFKr0k+bdF0TNCKmwVyiv7oH9xgo/FGUV:ytFKx+kNNm24TfzV

Score

N/A

Malware Config

Signatures

Files

edfc93e49352133309d00f3e283e083518bc5884e61ce0fdd160859cd8e24460
.exe windows x86

0645dacb2cee37a79a358f01ecb1595d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetFocus
GetWindow
ReleaseCapture
KillTimer
DefWindowProcA
SetWindowPos
IsWindow
ScreenToClient
CallWindowProcA
PeekMessageA
GetSysColor
ReleaseDC
GetDlgItem
BeginPaint
MessageBoxA
SetForegroundWindow
DestroyWindow

advapi32

RegOpenKeyExA
RegDeleteValueA
RegQueryValueExA
RegCreateKeyExA

kernel32

GetEnvironmentStringsW
GetVersionExA
GlobalUnlock
GetModuleFileNameA
GetFileAttributesW
FreeEnvironmentStringsA
GetOEMCP
GetStartupInfoA
GetEnvironmentStrings
GetFileSize
UnhandledExceptionFilter
GetProcAddress
TlsFree
WaitForSingleObject
GetFileAttributesA
lstrlenA
DeleteCriticalSection
GetFileType
GetTickCount
GetCurrentProcessId
GetCurrentThreadId
GetCommandLineA
GetModuleHandleA
GetCurrentThread
GetLastError
ExitProcess
GetVersion
HeapAlloc
GetProcessHeap
LeaveCriticalSection
WriteConsoleW
VirtualAlloc
SetEndOfFile
Sleep
FindClose
VirtualFree
SetLastError
LoadResource
InitializeCriticalSection
WriteConsoleA
CreateEventW
TerminateProcess
LocalFree
GetModuleHandleW
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
CloseHandle
ReadFile
GetStringTypeA
GetCPInfo
CompareStringA

Sections

.text
Size: 772KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0645dacb2cee37a79a358f01ecb1595d

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 772KB - Virtual size: 1.1MB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 11KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 772KB - Virtual size: 1.1MB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 10KB - Virtual size: 9KB