d085834133c3f76b85ca2cec80513f844c5a01d1610d0df536eefbf3e8a77259

General

Target

d085834133c3f76b85ca2cec80513f844c5a01d1610d0df536eefbf3e8a77259
Size

168KB
MD5

6066d621998d70c5ac644b6641b08173
SHA1

7ad5b9ddf515b323e0bfef14c83fe8745ff595f9
SHA256

d085834133c3f76b85ca2cec80513f844c5a01d1610d0df536eefbf3e8a77259
SHA512

98961a5a627edb5c1350a2d8a927673b462fce5bc4fce9008e892306aa57c39f93a05fe71dfdcc897898bbdf67f9f1b432d63c7fb0f3701fbbe059b8ba95fd50
SSDEEP

3072:NPBZFzXloGGvjHVQzCQH8ReycFCPW2qRdwZ1rc2xrNZly/JC:NPYvjHVQzCZO57dwX9vy/U

Score

N/A

Malware Config

Signatures

Files

d085834133c3f76b85ca2cec80513f844c5a01d1610d0df536eefbf3e8a77259
.exe windows x86

972d66b0ddc6e390e78dc2ecc050a2f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetFileSize
CreateFileA
LockResource
LoadResource
SizeofResource
FindResourceA
TerminateProcess
OpenProcess
Process32Next
Process32First
CreateToolhelp32Snapshot
Sleep
ResumeThread
SuspendThread
ExitProcess
FreeLibrary
TerminateThread
ExitThread
LoadLibraryA
SetFilePointer
CreateThread
WinExec
GetLastError
CreateMutexA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
SetStdHandle
HeapReAlloc
VirtualAlloc
GetStringTypeW
RtlUnwind
VirtualFree
WriteFile
GetProcAddress
CloseHandle
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate

user32

GetMessageA
DispatchMessageA
SetForegroundWindow
keybd_event
FindWindowExA
BlockInput
SetFocus
MoveWindow
GetMenu
ShowWindow
FindWindowA
SendMessageA
TranslateMessage

advapi32

CloseServiceHandle
RegCloseKey

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

972d66b0ddc6e390e78dc2ecc050a2f0

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 124KB - Virtual size: 121KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 124KB - Virtual size: 121KB