98fbcf82c2dcf743ca0fcf566541643c99d6a216d196c0f410482064d7952039

Sharing

Copy URL Twitter E-mail

General

Target

98fbcf82c2dcf743ca0fcf566541643c99d6a216d196c0f410482064d7952039
Size

245KB
MD5

5f76cd477d8bf894fdf342912ca04410
SHA1

c6e5c66190d902ae969ff527a869ca353ba152d7
SHA256

98fbcf82c2dcf743ca0fcf566541643c99d6a216d196c0f410482064d7952039
SHA512

786ee30d8e5150177ee93e2630b924bbab91fa66c39fcfc2f18860148095765defb5822bc01faea579d57e2c2b282c57b3a8e9691bdfeb01c8d9bac72cf94ad6
SSDEEP

3072:1feqAFk0yNCnHNLM/knKvgmg71DAusFkSU5vQOWu0NkbYBXHTs94EGxf6/J:Uz65NCnNkkgS1/s+P2OABXHYmZf6

Score

N/A

Malware Config

Signatures

Files

98fbcf82c2dcf743ca0fcf566541643c99d6a216d196c0f410482064d7952039
.exe windows x86

63d167080d050269c98b81e2aa59bc2a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugActiveProcess
GetTimeZoneInformation
EnumCalendarInfoW
GetPrivateProfileStringA
GetFileAttributesExA
WaitForMultipleObjectsEx
DnsHostnameToComputerNameW
WaitNamedPipeW
UpdateResourceW
EnumTimeFormatsW
GetTempPathA
GetSystemDefaultLangID
CancelDeviceWakeupRequest
GetStringTypeW
GetWriteWatch
GetDefaultCommConfigA
CreateEventW
CreateTimerQueue
ResetEvent
SetThreadAffinityMask
Sleep
CreateFileMappingA
GetStringTypeExA
WritePrivateProfileSectionW
GlobalFree
CreateMutexW
lstrcmpiA
CompareFileTime
DuplicateHandle
GetFileSizeEx

user32

DdeQueryConvInfo
EndDialog
EndPaint
SetWindowPos
UpdateWindow
SetScrollInfo
DestroyWindow
ActivateKeyboardLayout
ShowWindow
GetNextDlgTabItem
SetDlgItemTextW
PostMessageW
GetWindowRect
GetScrollInfo
GetSysColorBrush
MessageBoxW
GetFocus
DefWindowProcW
MoveWindow
GetDlgItem
GetDC
GetSysColor
ReleaseDC
CharNextW
GetActiveWindow
IsWindow
SetCursor
GetWindowTextW
InvalidateRect
EnableWindow
GetWindowTextLengthW
FillRect
ClientToScreen
GetDesktopWindow
GetWindow

advapi32

AdjustTokenPrivileges
RegDeleteKeyW
RegEnumValueW
RegUnLoadKeyW
LookupPrivilegeValueW
RegSetValueExA
RegEnumKeyW
RegLoadKeyW
RegSetValueW
RegFlushKey
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegConnectRegistryW
RegRestoreKeyW
RegCreateKeyW

Sections

.text
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63d167080d050269c98b81e2aa59bc2a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 86KB - Virtual size: 86KB

.data Size: 90KB - Virtual size: 89KB

.text Size: 512B - Virtual size: 472B

.rdata Size: 2KB - Virtual size: 2KB

.rsrc Size: 65KB - Virtual size: 64KB

.text
Size: 86KB - Virtual size: 86KB

.data
Size: 90KB - Virtual size: 89KB

.text
Size: 512B - Virtual size: 472B

.rdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 65KB - Virtual size: 64KB