d70d04306dba22c52c6981c2f2a1ee9fa5463197c564643513b6952a76794fe0

Sharing

Copy URL Twitter E-mail

General

Target

d70d04306dba22c52c6981c2f2a1ee9fa5463197c564643513b6952a76794fe0
Size

652KB
MD5

6481cdd199d7a49a1c082cf4f13888a4
SHA1

856bcccb834f9cdadf16a699cdcd644d29db53bb
SHA256

d70d04306dba22c52c6981c2f2a1ee9fa5463197c564643513b6952a76794fe0
SHA512

d55698ba21c0d35abbc77f73918524e8aa6c20382a3fa27171a164784a5e60b02c2a47affdcd694b8a3b36bf58b74bf5d1446ec9d5bbf63643b4654b6028ab30
SSDEEP

12288:w2AA150oObJtQUwe+HeByiIjbHKqOArfUfYKLGNvU0Z5qltf1Xg:wfAcBtQf7+ajbq/ArfUfdgvU0Z5qb1w

Score

N/A

Malware Config

Signatures

Files

d70d04306dba22c52c6981c2f2a1ee9fa5463197c564643513b6952a76794fe0
.exe windows x86

06ab8a06f6d1b07b0c30dc1143003c1c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA

kernel32

GetCommandLineA
GetTickCount
GetModuleHandleA
GetCurrentThreadId
GetVersion
GetCurrentProcessId
GetCurrentThread
GetLastError
ExitProcess
VirtualAlloc
Sleep
VirtualFree
UnmapViewOfFile
CreateProcessA
SetStdHandle
GetACP
CloseHandle
ReadFile
SetFilePointer
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
GetCPInfo
GetEnvironmentStrings
lstrlenW
GlobalAlloc
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
LCMapStringW
LeaveCriticalSection
CreateFileA
TlsSetValue
GetFileType
FindNextFileA
CompareStringA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
SetEvent
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
QueryPerformanceCounter
GetExitCodeProcess
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
SetEndOfFile
GetConsoleMode
VirtualQuery
TerminateProcess
SetUnhandledExceptionFilter
CreateThread
CreateMutexA
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
InitializeCriticalSection
SetLastError
OutputDebugStringA
FormatMessageA
FindClose
LoadResource
GetEnvironmentVariableA
FormatMessageW
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
GetLocaleInfoW
FreeEnvironmentStringsW
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
FreeEnvironmentStringsA
GetFileAttributesW
GetOEMCP
HeapDestroy
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle

user32

SetCursor
ReleaseDC
GetClientRect
wsprintfA
IsWindowVisible
GetKeyState
GetSysColor
MessageBoxA
SetDlgItemTextA
EndDialog
LoadIconA
LoadCursorA
GetDlgItem
GetWindowLongA
SetWindowTextA
SetWindowLongA
IsIconic
GetSystemMetrics
DefWindowProcA
BeginPaint
SetTimer
GetSubMenu
EnableMenuItem
TranslateMessage
EnableWindow
ShowWindow
UpdateWindow
GetParent
DestroyWindow
DrawTextA
GetDC
DispatchMessageA
LoadBitmapA

Sections

.text
Size: 608KB - Virtual size: 930KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06ab8a06f6d1b07b0c30dc1143003c1c

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 608KB - Virtual size: 930KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 26KB - Virtual size: 25KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 608KB - Virtual size: 930KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 26KB - Virtual size: 25KB

.rsrc
Size: 11KB - Virtual size: 10KB