ab792254792d108663a1c11dee8bb9980db46d9e63bac72d6541f65c789636c2

General

Target

ab792254792d108663a1c11dee8bb9980db46d9e63bac72d6541f65c789636c2
Size

312KB
MD5

65886cf91203e71fd084f75d8a72f2f0
SHA1

7193b206a1dbefa27ee4976c9a8c90c8b9a8b165
SHA256

ab792254792d108663a1c11dee8bb9980db46d9e63bac72d6541f65c789636c2
SHA512

29884b848c0cafa911b99373f70c6f1a0f32d7f9dda3b035fc85d786b35ee79925e4229337a50388b6ef6f3a41f1a8e1ad56563509d4b10cad5c219e6f4d7708
SSDEEP

6144:uT0o3Zw6KPEsWgpuQso86jvWlxYEDB1MGMWY2z:gw5PT72oslhDB

Score

N/A

Malware Config

Signatures

Files

ab792254792d108663a1c11dee8bb9980db46d9e63bac72d6541f65c789636c2
.exe windows x86

c4b4e160d2afafa5dd028449df23fedb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
WideCharToMultiByte
lstrcatW
SetUnhandledExceptionFilter
lstrcmpiW
lstrcpynW
lstrlenW
SetLastError
MulDiv
LocalUnlock
LocalReAlloc
LocalLock
LocalFree
LocalAlloc
LoadLibraryA
GlobalFree
GetSystemTimeAsFileTime
GetStartupInfoA
GetLocaleInfoW
GetFileInformationByHandle
GetFileAttributesW
GetCurrentProcessId
GetCurrentProcess
GetCommandLineW
FindFirstFileW
FindClose
CreateFileW
CreateFileMappingW
CompareStringW
GetModuleHandleA
GetProcAddress
lstrcmpW
ReadFile

user32

RegisterClassExA
LoadIconW

gdi32

SetWindowExtEx
SetViewportExtEx
SetMapMode
SetBkMode
SetAbortProc
LPtoDP
GetTextMetricsW
GetTextFaceW
GetTextExtentPoint32W
GetObjectW
StartDocW
EnumFontsW
EndPage
EndDoc
DeleteObject
DeleteDC
CreateFontIndirectW
CreateDCW
AbortDoc
GetStockObject
GetDeviceCaps
TextOutW
StartPage

advapi32

RegOpenKeyExA

msvcrt

memcpy

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 299KB - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4b4e160d2afafa5dd028449df23fedb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 299KB - Virtual size: 299KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 299KB - Virtual size: 299KB

.rsrc
Size: 5KB - Virtual size: 4KB