fbc3e137484de2078dc6ecfcb9d422915ac15975451146a43a131e5fcb9d461e

General

Target

fbc3e137484de2078dc6ecfcb9d422915ac15975451146a43a131e5fcb9d461e
Size

116KB
MD5

68eaf467558314aca116ecebf786a570
SHA1

8a17fe693b87d7de8a2c58f1247caccb6db3e4c0
SHA256

fbc3e137484de2078dc6ecfcb9d422915ac15975451146a43a131e5fcb9d461e
SHA512

95016acf0e69dd895cc698242de3335399f922c3f644d5ba23919a7246b1beeadd3b497527bf8b72516908036faa1e79529483381bb4425cddf0b3ff1066effd
SSDEEP

1536:QvuUah86zS8bQjwE/sC/dz1e4R9Uvjtow2hUxtilL05UiMJfdL:WuUau6m8Wwu9Yyw8NlI5UiMZdL

Score

N/A

Malware Config

Signatures

Files

fbc3e137484de2078dc6ecfcb9d422915ac15975451146a43a131e5fcb9d461e
.exe windows x86

b6549a8b352308aebf7bf7c9e05eb705

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
LocalFree
CreateFileW
WriteFile
LocalAlloc
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
TerminateProcess
GetUserDefaultLCID
CopyFileW
CreateEventW
lstrcpynW
SetEvent
GetModuleFileNameW
lstrlenW
lstrcpyW
lstrcatW
GetStartupInfoA
InterlockedCompareExchange
Sleep
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
DeleteFileW
CompareStringW
GetLocalTime
CloseHandle
InterlockedExchange
GetModuleHandleA

user32

CountClipboardFormats

advapi32

RegEnumKeyExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW

shell32

SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW

ole32

OleSetContainedObject
StringFromCLSID
CoCreateInstance
CoUninitialize
OleCreate
CoInitialize
CoTaskMemFree
StgCreateDocfile

msvcrt

exit
free
wcslen
malloc
_wtol
wcstok
wcschr
puts
__getmainargs
_cexit
_controlfp
_XcptFilter
_exit
_initterm
_amsg_exit
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
?terminate@@YAXXZ

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 613KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fdata
Size: 4KB - Virtual size: 640B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6549a8b352308aebf7bf7c9e05eb705

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

msvcrt

Sections

.text Size: 96KB - Virtual size: 92KB

.data Size: 4KB - Virtual size: 613KB

fdata Size: 4KB - Virtual size: 640B

.rsrc Size: 8KB - Virtual size: 6KB

.text
Size: 96KB - Virtual size: 92KB

.data
Size: 4KB - Virtual size: 613KB

fdata
Size: 4KB - Virtual size: 640B

.rsrc
Size: 8KB - Virtual size: 6KB