1a4e54badd160b06f95d11452a59afde2236472d064aa383a95bc104f97962db

General

Target

1a4e54badd160b06f95d11452a59afde2236472d064aa383a95bc104f97962db
Size

49KB
MD5

601b306554e67914dea99451411987e0
SHA1

da61e130e8bc537c9d8d8bb338b597b6adafc459
SHA256

1a4e54badd160b06f95d11452a59afde2236472d064aa383a95bc104f97962db
SHA512

8ed5140b8eb87296e93431ca8c4fc10baa723e2ebeb797e0320f8bb547b983deb5ee75fa6e1f3288401e064625b0d7854d2d3bd1290e54daf058536596b63c8b
SSDEEP

768:keeGtL/Si+ObcexOKdgcCIfC27FSPoZZE4TwYu0MgfIHFU1SdyLf9FOSw:9tmwYydgnmCXU1z+HFwr9QS

Score

N/A

Malware Config

Signatures

Files

1a4e54badd160b06f95d11452a59afde2236472d064aa383a95bc104f97962db
.exe windows x86

2c1e8b3142abda48f890c2aaee0be94f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CloseWindowStation
LoadCursorW
FindWindowExW
DrawIcon
SendMessageW
PeekMessageA
PeekMessageW
OpenWindowStationA
GetClassNameW
GetMessageA
SetProcessWindowStation
EndDialog
GetMessageW
GetCursorPos
MsgWaitForMultipleObjects
ExitWindowsEx
GetClipboardData
OpenDesktopA
ToUnicode
CharLowerBuffA
GetKeyboardState
GetDlgItemTextA
GetDlgItemTextW
SetThreadDesktop
GetWindowTextW
GetIconInfo
GetWindowThreadProcessId
GetKeyState
GetWindowLongW
GetForegroundWindow
DispatchMessageW
GetDlgItem
CloseDesktop

kernel32

GetExitCodeProcess
ReleaseMutex
DeleteFileW
HeapFree
GlobalLock
FlushFileBuffers
GetTickCount
ExpandEnvironmentStringsW
lstrlenA
GetVersionExW
lstrlenW
lstrcatA
GetSystemTime
HeapReAlloc
CopyFileW
FindClose
EnterCriticalSection
CloseHandle
GetTimeZoneInformation
WriteProcessMemory
lstrcmpiW
GetLastError
lstrcpyA
GetCommandLineA
lstrcpynW
GetTempFileNameW
IsBadReadPtr
GetComputerNameW
GetThreadPriority
WideCharToMultiByte
MapViewOfFile
HeapAlloc
FindNextFileW
GetLocalTime
GetCurrentProcessId
SetEndOfFile
ReadFile
CreateFileMappingW
GetCurrentThreadId
GetDriveTypeW
CreateFileW
SetThreadPriority
lstrcpyW
GetSystemTimeAsFileTime
SetEvent
GetModuleHandleA
Sleep
CreateDirectoryW
UnmapViewOfFile
GetUserDefaultUILanguage
OpenProcess
GetTempPathW
ResetEvent
GlobalUnlock
DisconnectNamedPipe
SetFileTime
MultiByteToWideChar

Sections

.argd
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bop
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jynmn
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c1e8b3142abda48f890c2aaee0be94f

Headers

File Characteristics

Imports

user32

kernel32

Sections

.argd Size: 39KB - Virtual size: 61KB

.bop Size: 2KB - Virtual size: 5KB

.jynmn Size: 7KB - Virtual size: 80KB

.argd
Size: 39KB - Virtual size: 61KB

.bop
Size: 2KB - Virtual size: 5KB

.jynmn
Size: 7KB - Virtual size: 80KB