a052df434f0e3df41e2e7f134ff9053c6c1b9744e74a51ae088b040880460ec7

Sharing

Copy URL

Twitter E-mail

General

Target

a052df434f0e3df41e2e7f134ff9053c6c1b9744e74a51ae088b040880460ec7
Size

85KB
MD5

6b4581ff5efb7f0dae74e61d954ec9f0
SHA1

3919665ff4fb685ffacf8b7534f9101f829e0b11
SHA256

a052df434f0e3df41e2e7f134ff9053c6c1b9744e74a51ae088b040880460ec7
SHA512

7974c8ce5ac7e0895b0807fd338066d4e196865f2449fe11cb5f2ce74ea2975320f3e7f1b1344af6c1aa480c9fa0d22b4c79d77b33ce2c2bf3e6f04707d3994b
SSDEEP

1536:lDVsgE1g6zpcTobNDbxwAr/4THvO90tlEy4c0:BVsgCxLb9br8vO900

Score

N/A

Malware Config

Signatures

Files

a052df434f0e3df41e2e7f134ff9053c6c1b9744e74a51ae088b040880460ec7
.exe windows x86

bc975be1bfc429af8a63fa4182a706fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHQueryInfoKeyA
PathFileExistsA
SHGetValueA
SHSetValueA
PathIsDirectoryA
SHStrDupA

kernel32

VirtualAlloc
WideCharToMultiByte
lstrcpyA
FindClose
SetHandleCount
GetStdHandle
GetVersion
LocalAlloc
GetCommandLineA
LoadLibraryA
GlobalAlloc
FreeResource
FormatMessageA
VirtualFree
IsBadHugeReadPtr
GetModuleHandleA
FindFirstFileA
VirtualQuery
ExitProcess
GetTickCount
GetLocalTime
ExitThread

user32

EqualRect
FillRect
GetMenuStringA
DestroyIcon
SetScrollInfo
InsertMenuItemA
EnableMenuItem
SetParent
CharNextA
MapVirtualKeyA
DrawFrameControl
EnableWindow
GetFocus
IsWindowEnabled
SetClassLongA
GetForegroundWindow
GetLastActivePopup
GetWindowTextLengthA
CharLowerA
MoveWindow
CreateMenu
InvalidateRect
DispatchMessageA
SetCursor
EmptyClipboard
GetSystemMetrics
GetMenu
SetFocus
CreateIcon
DefMDIChildProcA
GetKeyboardLayoutList
IsRectEmpty
RegisterClassA
GetCursor
InsertMenuA
EnableScrollBar
WaitMessage
DefFrameProcA
OpenIcon
GetScrollInfo
GetParent
GetDesktopWindow
IsZoomed
SetWindowTextA
SetActiveWindow
CharToOemA
GetCapture
LoadCursorA
PostMessageA
GetWindowRect
MessageBeep
GetMenuState
ClientToScreen
TrackPopupMenu
IsDialogMessageA
GetWindowPlacement
CharUpperA
OpenClipboard
EnumWindows
SetScrollPos
GetKeyboardState

Exports

Exports

_p8tcTHc3
_zjC50N7Rr@4
_AGgE6pOO@12

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 512B - Virtual size: 482B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc975be1bfc429af8a63fa4182a706fc

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.data Size: 11KB - Virtual size: 34KB

.edata Size: 46KB - Virtual size: 45KB

.idata Size: 4KB - Virtual size: 3KB

.bdata Size: 512B - Virtual size: 482B

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 14KB - Virtual size: 13KB

.data
Size: 11KB - Virtual size: 34KB

.edata
Size: 46KB - Virtual size: 45KB

.idata
Size: 4KB - Virtual size: 3KB

.bdata
Size: 512B - Virtual size: 482B

.rsrc
Size: 9KB - Virtual size: 8KB