975479f6501d3ad031179f1a964430e70486b9d98c0951853120f76ead6a3e15

Sharing

Copy URL Twitter E-mail

General

Target

975479f6501d3ad031179f1a964430e70486b9d98c0951853120f76ead6a3e15
Size

140KB
MD5

62a890401cc970c529fa25e76d208b62
SHA1

926d6e268accbe6ce577c0907bce70131ef0edb0
SHA256

975479f6501d3ad031179f1a964430e70486b9d98c0951853120f76ead6a3e15
SHA512

d64d4b07d1981ee69487cd6a7bf92d566212217d1c4ce6c38b11177c58cbc584dbd1bcf2c4f985c84c5409055c3412f15177677e3a13e650ef8f94c6415c4328
SSDEEP

3072:kONJxi8Cz2PA34r+25B6fdYEYn7aoeJNdevvt3rWNU3RT:zNJxi8CzH34rf6fdYEMEJnO3x

Score

N/A

Malware Config

Signatures

Files

975479f6501d3ad031179f1a964430e70486b9d98c0951853120f76ead6a3e15
.exe windows x86

868dca01b206f5d6e268630358d40369

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetCommandLineA
GetFileSize
GetFileTime
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetTempPathA
GlobalFree
GlobalLock
LoadLibraryA
MoveFileA
ReadFile
SetFilePointer
Sleep
WaitForMultipleObjects
WriteFile
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA
ExitProcess
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
HeapValidate
IsBadReadPtr
IsBadWritePtr
SetConsoleCtrlHandler
RtlUnwind
VirtualFree
HeapFree
HeapCreate
FlushFileBuffers
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
DeleteFileA
CreateThread
CreateMutexA
CreateFileA
CreateDirectoryA
CloseHandle
GetStartupInfoA
GetVersion
DebugBreak
GetStdHandle
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType

user32

UpdateWindow
TranslateMessage
SetFocus
SendMessageA
RegisterClassExA
PostQuitMessage
MessageBoxA
LoadIconA
LoadCursorA
LoadBitmapA
GetWindowTextA
GetMessageA
FindWindowA
EnableWindow
DispatchMessageA
DefWindowProcA
CreateWindowExA
CharUpperBuffA
CharToOemBuffA
CharToOemA
CharLowerBuffA
wsprintfA
ShowWindow

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetUserNameA

comctl32

ord8

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

868dca01b206f5d6e268630358d40369

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

Sections

.text Size: 68KB - Virtual size: 67KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 18KB - Virtual size: 51KB

.rsrc Size: 46KB - Virtual size: 45KB

.text
Size: 68KB - Virtual size: 67KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 18KB - Virtual size: 51KB

.rsrc
Size: 46KB - Virtual size: 45KB