5f07dd1b6b795e4cf0d3458c2c987fc52d18d5861f48b1be318eb2851c5f24d2

Sharing

Copy URL Twitter E-mail

General

Target

5f07dd1b6b795e4cf0d3458c2c987fc52d18d5861f48b1be318eb2851c5f24d2
Size

672KB
MD5

670e9e7b1538477be44966d50442c5f0
SHA1

40bbdd770ba0261f7adf2a4e16f43553837c82aa
SHA256

5f07dd1b6b795e4cf0d3458c2c987fc52d18d5861f48b1be318eb2851c5f24d2
SHA512

0c3d8ac009562bc712c7b5699d74956ea6f50c2fb2c82f79c4f801d90e5eafbb863c73da50bd884c688489f227ad4089cf8378a2fd5220bb3f502ca8ffef64d5
SSDEEP

12288:y9cUyB6DSk9wY09QVqnutQ8b4TP7kqnSfzz:zB6DSk9wt9QV+u7ajkqwzz

Score

N/A

Malware Config

Signatures

Files

5f07dd1b6b795e4cf0d3458c2c987fc52d18d5861f48b1be318eb2851c5f24d2
.exe windows x86

e8af0963b36bbe3b9ed92c3f3053714c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

crtdll

__GetMainArgs
_assert
abort
atexit
_cexit
atoi
calloc
clearerr
clock
exit
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fputc
fputs
fread
free
fseek
fwrite
getc
getenv
gmtime
isalnum
isalpha
iscntrl
isdigit
isspace
isxdigit
localtime
malloc
memchr
memcpy
memmove
memset
mktime
printf
putc
putchar
puts
raise
rand
realloc
remove
rename
sprintf
srand
sscanf
strcat
strchr
strcmp
strcpy
strerror
strftime
strncmp
strncpy
strpbrk
strrchr
strspn
strstr
strtol
strtoul
time
toupper
vfprintf
vsprintf
_errno
_fpreset
_iob
_access
_fdopen
_fileno
_fstat
_getpid
_chmod
_isatty
_lseek
_memicmp
_mkdir
_open
_read
_setmode
_close
_stricmp
_write

kernel32

FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
CloseHandle
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetProcessTimes
GetProcessWorkingSetSize
GetStartupInfoA
GetThreadTimes
GetTickCount
GetVersionExA
GlobalMemoryStatus
LoadLibraryA
QueryPerformanceCounter
CreateFileA
ReadConsoleA
SetConsoleMode
VirtualProtect
WriteConsoleA
DeviceIoControl
ExitProcess

user32

GetActiveWindow
GetCapture
GetCaretPos
GetClipboardOwner
GetClipboardViewer
GetCursorPos
GetDesktopWindow
GetFocus
GetInputState
GetMessagePos
GetMessageTime
GetOpenClipboardWindow
GetProcessWindowStation
GetQueueStatus

Sections

.text
Size: 477KB - Virtual size: 476KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e8af0963b36bbe3b9ed92c3f3053714c

Headers

File Characteristics

Imports

advapi32

crtdll

kernel32

user32

Sections

.text Size: 477KB - Virtual size: 476KB

.data Size: 14KB - Virtual size: 14KB

.bss Size: - Virtual size: 5KB

.idata Size: 4KB - Virtual size: 3KB

.gdata Size: 76KB - Virtual size: 76KB

.text
Size: 477KB - Virtual size: 476KB

.data
Size: 14KB - Virtual size: 14KB

.bss
Size: - Virtual size: 5KB

.idata
Size: 4KB - Virtual size: 3KB

.gdata
Size: 76KB - Virtual size: 76KB