2118d62390336a6496a5bb4ec8be6ff19c666de4f1629773a11fd73fd44dde2b

General

Target

2118d62390336a6496a5bb4ec8be6ff19c666de4f1629773a11fd73fd44dde2b
Size

110KB
MD5

3e908cdd20e9f6267b6dcd92a6016f30
SHA1

76a84a10daa218d50117304640910e25832c5c6c
SHA256

2118d62390336a6496a5bb4ec8be6ff19c666de4f1629773a11fd73fd44dde2b
SHA512

8ca458787ed3f278ab4c68ea0a0e35d89c5c43dcd7c2f9ac77ce41c6a839c19361000441966b13542d42d2786e2228be4ce02d62e26cf0b8db6c0504905d0ea3
SSDEEP

3072:C4jz79rNf8ORwDpCcqvTb9+2dbleN9OoRnCn:C4jDfZ2pCRboRn

Score

N/A

Malware Config

Signatures

Files

2118d62390336a6496a5bb4ec8be6ff19c666de4f1629773a11fd73fd44dde2b
.exe windows x86

e686a6644c95a0bfd52eaee5ef0d78cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegCreateKeyExA
RegSetValueExA

comctl32

InitCommonControls

kernel32

CloseHandle
CreateSemaphoreA
DeleteFileA
ExitProcess
FindClose
FindFirstFileA
GetCommandLineA
GetCurrentProcess
GetEnvironmentVariableA
GetFullPathNameA
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetTempFileNameA
GetTempPathA
GetVersionExA
GetWindowsDirectoryA
LoadLibraryA
MoveFileExA
RemoveDirectoryA
SetCurrentDirectoryA
SetUnhandledExceptionFilter
Sleep

msvcrt

__getmainargs
__p__environ
__set_app_type
_cexit
_fileno
_fmode
_fpreset
_iob
_mkdir
_rmdir
_setmode
atexit
fclose
fgets
fgetws
fopen
rand
signal
sprintf
srand
strchr
strcpy
strstr
time
wcscat
wcscpy
wcslen
wcsncmp

user32

ExitWindowsEx
MessageBoxW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ldata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e686a6644c95a0bfd52eaee5ef0d78cf

Headers

File Characteristics

Imports

advapi32

comctl32

kernel32

msvcrt

user32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 40B

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.ldata Size: 76KB - Virtual size: 76KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 40B

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.ldata
Size: 76KB - Virtual size: 76KB