e705551765a0357693daaff82576b12627fafae8a634740001c23f259fe6070e

General

Target

e705551765a0357693daaff82576b12627fafae8a634740001c23f259fe6070e
Size

100KB
MD5

6b8578cf52bdc4cff9de38c6713da331
SHA1

07c5e387d299db8f3cdfbc395e8bad58b6b1a8c7
SHA256

e705551765a0357693daaff82576b12627fafae8a634740001c23f259fe6070e
SHA512

fffa4406f1b8084171f0c85ea0e451e2b9523f00667460b572bdfdd5a59a44c7e5fb1a337a6e8bdfa78e9fbcc1961b8e4e8b193174ec387015fd5f33dde8e0aa
SSDEEP

1536:vlfsj3/LwDOhQ/tsDfiWJQDbITMcGA17yZIH2hS10aGkb/u5IJY:vlfsQSmWDKfIT/ppyYeS+aGkb/u5IJY

Score

N/A

Malware Config

Signatures

Files

e705551765a0357693daaff82576b12627fafae8a634740001c23f259fe6070e
.exe windows x86

2853f1ce22e3c103c5f5e538a2a612b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetTempPathA
LocalFree
FormatMessageA
GetLastError
lstrcatA
Sleep
OutputDebugStringA
GetModuleHandleA
MultiByteToWideChar
WideCharToMultiByte
FindResourceA
GetProcAddress
GetModuleFileNameA
LoadLibraryA
CloseHandle
WritePrivateProfileStringA
CreateFileA
IsDBCSLeadByte
lstrcpyA
HeapFree
VirtualAlloc
VirtualFree
GetFileAttributesA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
SetFilePointer
FlushFileBuffers
SetStdHandle
ReadFile
GetStringTypeW
RtlUnwind
CreateProcessA
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
TerminateProcess
GetCurrentProcess
GetStartupInfoA
GetCommandLineA
GetVersion
RaiseException
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
GetStringTypeA
FreeEnvironmentStringsW
IsBadWritePtr
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetFileType
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
WriteFile
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr

user32

TranslateMessage
DispatchMessageA
PeekMessageA
MsgWaitForMultipleObjects
wsprintfA
GetDesktopWindow
LoadStringA
wvsprintfA
MessageBoxA
SetCursor
LoadCursorA

advapi32

RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegEnumValueA
RegQueryValueExA
RegCreateKeyExA
RegEnumKeyA

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2853f1ce22e3c103c5f5e538a2a612b9

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 64KB - Virtual size: 61KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 12KB

.rsrc Size: 20KB - Virtual size: 80KB

.text
Size: 64KB - Virtual size: 61KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 12KB

.rsrc
Size: 20KB - Virtual size: 80KB