d012def4abbaaf92583c9a05d0ba7da34493deb1eaaca294cd83be7fb84bb42f

Sharing

Copy URL

Twitter E-mail

General

Target

d012def4abbaaf92583c9a05d0ba7da34493deb1eaaca294cd83be7fb84bb42f
Size

149KB
MD5

18b12b95a7548d8a257ccd06353fc8f7
SHA1

a6fd267c3bead596400f2458390ff503ad8159dc
SHA256

d012def4abbaaf92583c9a05d0ba7da34493deb1eaaca294cd83be7fb84bb42f
SHA512

c7449941f0ae511fac9ac96bd65dcccd93d6990c72bdcf643693920e299a12ce1b2fa8d6349c9b4596413f4258beb85dff21e1a4f7c636a19e2c2de3e5613dcb
SSDEEP

3072:56Wk0WLMMUAyDDUYNAdcSKTtlgc/qeY6K7P6k7R5nwzv:4aWLMMUAyDhMs7gcCeY6Q1Fi

Score

N/A

Malware Config

Signatures

Files

d012def4abbaaf92583c9a05d0ba7da34493deb1eaaca294cd83be7fb84bb42f
.exe windows x86

5e286dea4916a9d90e306a7728f3e720

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
_except_handler3
_controlfp
__p__commode
__set_app_type
_XcptFilter
__getmainargs
_adjust_fdiv
__setusermatherr
_exit
_initterm
__p___initenv

user32

SetFocus
GetClientRect
MapWindowPoints
SetTimer
CharNextA
EnableWindow
DefWindowProcA
GetKeyState
TrackPopupMenu
EndPaint
InvalidateRect
LoadStringA
KillTimer
SetForegroundWindow
GetClassInfoA
SetWindowTextA
CallNextHookEx
ScreenToClient
SystemParametersInfoA
GetDC
RegisterClassA
GetSysColor
BeginPaint
GetCursorPos
GetMenuItemCount
GetDlgItem
ShowWindow
SendMessageA
GetSubMenu
GetMenu
GetWindowLongA
MessageBoxA
GetWindowTextA
wsprintfA
GetWindow
DispatchMessageA
IsWindowEnabled

kernel32

GetStringTypeA
LocalAlloc
SetLastError
LCMapStringA
GetProcAddress
InterlockedExchange
VirtualFree
GetCurrentThreadId
GetLocalTime
lstrcmpiW
MultiByteToWideChar
TerminateProcess
GetModuleHandleW
GetCommandLineA
VirtualProtect
GetFullPathNameA
GetCPInfo
LocalFree
GetFileType
GetSystemInfo
UnhandledExceptionFilter
GetStartupInfoA
QueryPerformanceCounter
GetDriveTypeA
GetThreadLocale
GetModuleHandleA
GetOEMCP
CopyFileA
GetEnvironmentStrings
SetErrorMode
GetCurrentProcessId
LoadLibraryA
SetFilePointer
Sleep
InterlockedIncrement
WaitForSingleObject
SetUnhandledExceptionFilter
GetConsoleOutputCP
GetLocaleInfoA
GetLastError
DeleteFileA
GetModuleFileNameW
lstrlenA

advapi32

OpenSCManagerA
RegQueryValueExA
CryptDestroyHash
SetSecurityDescriptorOwner
RegQueryValueA
CryptCreateHash
CryptAcquireContextA
LookupPrivilegeValueW
OpenServiceW
OpenProcessToken
RegFlushKey
LookupPrivilegeValueA
RegEnumKeyA
AdjustTokenPrivileges
CheckTokenMembership
RegOpenKeyW
RegEnumKeyExW
RegOpenKeyA
RegDeleteValueW
RegQueryInfoKeyW
RegEnumKeyW
CopySid
GetUserNameA
QueryServiceStatus
RegQueryValueExW
CryptGenRandom
CryptHashData

Sections

.text
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e286dea4916a9d90e306a7728f3e720

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

advapi32

Sections

.text Size: 1024B - Virtual size: 860B

.rdata Size: 101KB - Virtual size: 100KB

.data Size: 33KB - Virtual size: 33KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 1024B - Virtual size: 860B

.rdata
Size: 101KB - Virtual size: 100KB

.data
Size: 33KB - Virtual size: 33KB

.rsrc
Size: 10KB - Virtual size: 10KB