e1dd6c445c171859b756a47fd1cd88d81e2512cb5226baca09a8c1621f7692b6

General

Target

e1dd6c445c171859b756a47fd1cd88d81e2512cb5226baca09a8c1621f7692b6
Size

42KB
MD5

7bf09c5dedb83168eb712f5b52a82680
SHA1

b8b90a82adc140c3d366fde3bc7f9f8cd0e3da61
SHA256

e1dd6c445c171859b756a47fd1cd88d81e2512cb5226baca09a8c1621f7692b6
SHA512

cf738fc5dd6c0213b10fe355f6dbf268367679d135dfa8a75ae23ecc9bd864513a9056f0f587e60ab1a028af97ef61051a61bb5e345c65e56b82ed2decce88d0
SSDEEP

768:IxEyoaf9YX2EV3K8M5Xx56/DNgPZuvmPVTwz7yUs4eFG42xYV:MES02c3XMXyNWZ+2VEyUs4ew4x

Score

N/A

Malware Config

Signatures

Files

e1dd6c445c171859b756a47fd1cd88d81e2512cb5226baca09a8c1621f7692b6
.exe windows x86

7a6ff96752cda607c116ea7a62a9c77c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseProfileUserMapping
EnumResourceLanguagesW
ExitProcess
FileTimeToLocalFileTime
GetComputerNameA
GetConsoleOutputCP
GlobalAddAtomA
HeapFree
OpenProfileUserMapping
OpenWaitableTimerA
PeekConsoleInputW
ReleaseMutex
RemoveDirectoryW
SetConsoleMode
SetEnvironmentVariableW
SetSystemPowerState
SetThreadLocale
SystemTimeToFileTime
TerminateProcess
WriteConsoleOutputW
lstrcatW
lstrcpyA

advapi32

AddAccessAllowedAce
CloseEventLog
CryptDeriveKey
CryptGetKeyParam
CryptSetProviderA
DeregisterEventSource
EnumDependentServicesW
EnumServicesStatusW
GetAclInformation
LookupPrivilegeValueA
LookupSecurityDescriptorPartsA
ObjectDeleteAuditAlarmW
QueryServiceConfigA
QueryServiceLockStatusW
ReadEventLogW
RegEnumValueW
RegQueryInfoKeyW
RegQueryMultipleValuesA
RegQueryValueExA
RegQueryValueExW

user32

CopyIcon
CreateIconFromResourceEx
DdeQueryStringA
DlgDirSelectComboBoxExA
EditWndProc
ExcludeUpdateRgn
GetAsyncKeyState
GetCaretPos
GetKeyNameTextA
GetUpdateRgn
GetWindowModuleFileNameA
IsDialogMessageW
LookupIconIdFromDirectory
MenuItemFromPoint
OemToCharA
OemToCharBuffA
RegisterSystemThread
SetRectEmpty
TrackPopupMenu
ValidateRgn

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a6ff96752cda607c116ea7a62a9c77c

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 40KB - Virtual size: 56KB

.idata Size: - Virtual size: 4KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 40KB - Virtual size: 56KB

.idata
Size: - Virtual size: 4KB

.rsrc
Size: - Virtual size: 8KB