d89cf1a474681d73a0bc1714e4b22b9fdf44cbcd353e9a9ad7e890c7cd00261e

General

Target

d89cf1a474681d73a0bc1714e4b22b9fdf44cbcd353e9a9ad7e890c7cd00261e
Size

96KB
MD5

5060320f427bd10873aa7d47cdca4fc0
SHA1

31eddb859cb1ed267f19ff922019ace461ef3359
SHA256

d89cf1a474681d73a0bc1714e4b22b9fdf44cbcd353e9a9ad7e890c7cd00261e
SHA512

3296333c201007559639a0fe648ff9bbd029db43b1d697ef97fd01b7245f522354ae1d1bcfc2f94d73b739155421df074577cfd3cbcf2500ca53b5e74c618b3e
SSDEEP

1536:Fa5u6kaWpAUPnFAwUD9FKGRrH/ZhIzM/9yMbNAiPaKVZR0adHs4pBY:Fa5CpdrILJxH0o/ICy8Xps4Q

Score

N/A

Malware Config

Signatures

Files

d89cf1a474681d73a0bc1714e4b22b9fdf44cbcd353e9a9ad7e890c7cd00261e
.exe windows x86

b21aecc8b527e73f5bfdd8cb48027fb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
LockResource
GetFileSize
DuplicateHandle
MulDiv
GlobalDeleteAtom
MultiByteToWideChar
CreateWaitableTimerW
LoadLibraryA
GlobalUnlock
SizeofResource
SuspendThread
GetProcAddress
SetEndOfFile
DeleteFileW
LoadResource
FindFirstFileW
GetModuleHandleW
Sleep
CreateProcessW
GetDriveTypeW
FindResourceExW
WriteFile
CloseHandle
SetCurrentDirectoryW
ResetEvent

user32

SetWindowPos
ReleaseDC
MessageBoxW
SetCursorPos
GetWindowTextW
SendMessageW
TranslateMessage
TrackPopupMenu
GetWindowDC
LoadStringW
LoadIconW
SetWindowTextW
SendDlgItemMessageW
DispatchMessageW
AppendMenuW
SystemParametersInfoW
SetLayeredWindowAttributes
DestroyMenu
LoadBitmapW

gdi32

CreateCompatibleDC
GetStockObject
BitBlt
GetClipBox
SetBkMode
CreateDCW
SelectObject
DeleteDC
LineTo
SetBkColor
GetDeviceCaps
DeleteObject
CreateRoundRectRgn
CreateSolidBrush
StretchBlt

advapi32

InitializeSecurityDescriptor
GetUserNameW
RegSetValueExW
RegCreateKeyExW
RegNotifyChangeKeyValue

Sections

.sgaf
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.fsyh
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.utilga
Size: 4KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b21aecc8b527e73f5bfdd8cb48027fb5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.sgaf Size: 84KB - Virtual size: 81KB

.fsyh Size: 4KB - Virtual size: 1KB

.utilga Size: 4KB - Virtual size: 22KB

.sgaf
Size: 84KB - Virtual size: 81KB

.fsyh
Size: 4KB - Virtual size: 1KB

.utilga
Size: 4KB - Virtual size: 22KB