97129020640667f6ead6ff298598625fbdb82de5e6a9283f4b4839aacf97836c

General

Target

97129020640667f6ead6ff298598625fbdb82de5e6a9283f4b4839aacf97836c
Size

167KB
MD5

6b632348b68ddf24cf861650ab783e03
SHA1

7881bae4183081a504d5611292f1885a84bb7ab5
SHA256

97129020640667f6ead6ff298598625fbdb82de5e6a9283f4b4839aacf97836c
SHA512

4b7d4319edaf50cc6f1c545eb0bfe4ae85fe765a6fc7083d6684bbfff218e313237985fa701d5a274ab9a7958981d724e6ed78b91336b57a6332adf6ec3a32cf
SSDEEP

3072:PX+biyMcfA2yv7rW3PHtqLB/dZidpMAvdWQOrT6ojHydi2e:WxMKErW3PH7vModWbr5SA2

Score

N/A

Malware Config

Signatures

Files

97129020640667f6ead6ff298598625fbdb82de5e6a9283f4b4839aacf97836c
.exe windows x86

fde4ef20cf852e0f604dfd24865e2a73

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

advapi32

RegEnumKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegQueryInfoKeyW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW

kernel32

GetTickCount
FillConsoleOutputCharacterA
InitializeCriticalSection
lstrlenW
FindClose
GetProcessWorkingSetSize
lstrcmpiW
lstrcpyW
lstrcpyA
WideCharToMultiByte
CreateFileMappingW
EnumResourceNamesA
LockResource
GetACP
FreeEnvironmentStringsW
GetCPInfo
GlobalFree
GlobalAlloc
OutputDebugStringW
GetLastError
MultiByteToWideChar
GetModuleHandleW

ole32

CoInitialize
StringFromGUID2
CoRevokeClassObject
CoTaskMemRealloc
CoRegisterClassObject
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
StringFromCLSID

shlwapi

PathCombineW
PathFileExistsW

user32

SendMessageA
CharUpperW
KillTimer
wsprintfW
PostThreadMessageW
CharNextW
GetDC
SetTimer
TranslateMessage
DispatchMessageW
GetMessageW
UnregisterClassA

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fde4ef20cf852e0f604dfd24865e2a73

Headers

File Characteristics

Imports

oleacc

advapi32

kernel32

ole32

shlwapi

user32

Sections

.text Size: 102KB - Virtual size: 102KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 60KB - Virtual size: 60KB

.isete Size: 1024B - Virtual size: 376KB

.text
Size: 102KB - Virtual size: 102KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 60KB - Virtual size: 60KB

.isete
Size: 1024B - Virtual size: 376KB