44c2ddc14a11c6c3c2581cd45d3174306d649f6431ee2a2a62becf8eecafb29e

General

Target

44c2ddc14a11c6c3c2581cd45d3174306d649f6431ee2a2a62becf8eecafb29e
Size

248KB
MD5

4f5c298a889f129c08466e0697b6a663
SHA1

f257b006ce1bae201f76d37ba4cb960e96663671
SHA256

44c2ddc14a11c6c3c2581cd45d3174306d649f6431ee2a2a62becf8eecafb29e
SHA512

a697898162cb64a59355008ef335ec26c669b2945c578ba399066f6e93a1b8d370767b87093e4e07135087fa06b23d591807f01c9ebdcd32021db952ce364111
SSDEEP

3072:BrOadf7aLRd/RakfwlTxlZVpmdGSi2zrq2IFB25llJlHy66s6MCt+5JBh0qtLUUO:BrOiGXZrirUdGsnqzu5llB6tZoM2419

Score

N/A

Malware Config

Signatures

Files

44c2ddc14a11c6c3c2581cd45d3174306d649f6431ee2a2a62becf8eecafb29e
.exe windows x86

806e955bb8317300d871a0a32c6f8027

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetFileType
GetCommandLineA
WideCharToMultiByte
GetCommandLineA
GetCPInfo
GetCommandLineA
lstrcpynA
GetCommandLineA
lstrcatA
GetCommandLineA
GetConsoleCP
GetCommandLineA
FreeLibrary
GetCommandLineA
ExitProcess
GetCommandLineA
GetLastError
GetCommandLineA
lstrcmpA
GetConsoleCP
GetFileAttributesA
GetFileSize
GetStdHandle
FreeLibrary
GetModuleFileNameA
Sleep
WideCharToMultiByte
GetDateFormatA
lstrcmpA
GetFileType
GetCPInfo
lstrcmpiA
GetLastError
HeapAlloc
lstrcpyA
GlobalFree

user32

IsWindow
AppendMenuW
CopyRect
DialogBoxParamA
DrawIcon
GetWindowTextA
LoadCursorA
BlockInput
AlignRects
LoadMenuA
GetDlgItem
CloseWindow
GetWindowTextLengthA
IsMenu
InsertMenuA
AppendMenuA
DrawTextW
DrawIconEx
GetDC

advapi32

RegOpenKeyA
RegCreateKeyExA
RegEnumValueW
RegQueryInfoKeyW
RegEnumKeyW
RegQueryValueA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyW
RegDeleteKeyW
RegQueryValueW
RegLoadKeyA
RegQueryValueExW
RegEnumKeyExA
RegCreateKeyExW
RegReplaceKeyA
RegGetKeySecurity

Sections

.tadt
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eaata
Size: 11KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idaaa
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

806e955bb8317300d871a0a32c6f8027

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.tadt Size: 10KB - Virtual size: 10KB

.rdata Size: 217KB - Virtual size: 216KB

.eaata Size: 11KB - Virtual size: 46KB

.reloc Size: 4KB - Virtual size: 5KB

.idaaa Size: 1024B - Virtual size: 1KB

.tadt
Size: 10KB - Virtual size: 10KB

.rdata
Size: 217KB - Virtual size: 216KB

.eaata
Size: 11KB - Virtual size: 46KB

.reloc
Size: 4KB - Virtual size: 5KB

.idaaa
Size: 1024B - Virtual size: 1KB