14bdae702928af1b0e09dec36bdacbb29d8a5c2a4b423ddde1d5413ea9c63f08

Sharing

Copy URL Twitter E-mail

General

Target

14bdae702928af1b0e09dec36bdacbb29d8a5c2a4b423ddde1d5413ea9c63f08
Size

62KB
MD5

62f2fed6ac1dbb2e1e0c01a3835b3aca
SHA1

940dd3f0138aeb9c9c0e32309d6be64b0f075107
SHA256

14bdae702928af1b0e09dec36bdacbb29d8a5c2a4b423ddde1d5413ea9c63f08
SHA512

af4a70d77bf149964c52281e7356ebd22db89d8dad318677d96cbd9b763de5add8e124488838d740988c5e1944d58a31e86c3beadd3082f2bf1b76c790ee4d9e
SSDEEP

1536:X4yEH/ZLNBo4YtWnn3d2jcLP3h9VMT5o0Esw:9UxLmto3acV9VMT5PEsw

Score

N/A

Malware Config

Signatures

Files

14bdae702928af1b0e09dec36bdacbb29d8a5c2a4b423ddde1d5413ea9c63f08
.exe windows x86

813c74c24194de967c563c636c7cb400

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

userenv

GetUserProfileDirectoryW

kernel32

WaitForSingleObject
DeleteFileW
Sleep
GetCurrentProcess
ExitProcess
CreateProcessW
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
CopyFileW
GetModuleFileNameW
HeapSize
TlsAlloc
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
GetLastError
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
HeapFree
CloseHandle
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleHandleW
GetProcAddress
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
CreateFileW
InitializeCriticalSectionAndSpinCount
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
SetStdHandle
FlushFileBuffers
HeapAlloc
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryA
SetEndOfFile
GetProcessHeap
ReadFile
CreateFileA
LCMapStringA

user32

PostQuitMessage
DestroyWindow
SetWindowPos
GetDesktopWindow
GetWindowRect
DispatchMessageW
TranslateMessage
IsDialogMessageW
GetMessageW
MessageBoxA
ShowWindow
CreateDialogParamW

advapi32

RegSetValueExA
RegOpenKeyA
OpenProcessToken
RegCloseKey

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

813c74c24194de967c563c636c7cb400

Headers

DLL Characteristics

File Characteristics

Imports

userenv

kernel32

user32

advapi32

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 1024B - Virtual size: 688B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 1024B - Virtual size: 688B

.reloc
Size: 4KB - Virtual size: 3KB