0b118f3d7a26f0f11fec85f68dd8baf716ea8cffb255070c429afd4296536160

General

Target

0b118f3d7a26f0f11fec85f68dd8baf716ea8cffb255070c429afd4296536160
Size

172KB
MD5

68be06aa5a08d909ad4a088e38ab5821
SHA1

5a689348c1a0e02d206095e36ece7c986ef19ef0
SHA256

0b118f3d7a26f0f11fec85f68dd8baf716ea8cffb255070c429afd4296536160
SHA512

72b09dc159d3edae7298a970bef58a2a39c4ddaa0a27b0ac064441e17457f12dcd9222e721f0c0569f362edac273eabf6eccccd84e67350d2b7d1b6eb363062b
SSDEEP

3072:pZeF+Z7m1/VidwOwL8I1y3NpubedwLUGickooOALQngtJxrggzfqhuum64iRVd3:U8I1WNp+ywbicdoqngzxrgAShuk

Score

N/A

Malware Config

Signatures

Files

0b118f3d7a26f0f11fec85f68dd8baf716ea8cffb255070c429afd4296536160
.exe windows x86

ea8bddbed14736818665d4f73bf7cd23

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetRect
GetCursorPos
PostQuitMessage
UpdateWindow
ShowCursor
EmptyClipboard
GetKeyState
FindWindowA
SetClassLongA
GetSysColor
UnhookWindowsHookEx
GetWindowLongA
GetWindow
SetWindowsHookExA
LoadIconA
GetDesktopWindow
LoadCursorA
CharLowerA
PostMessageA
GetParent
SetMenu
InflateRect
GetSysColorBrush
GetSystemMetrics
DestroyMenu

kernel32

Sleep
lstrcpyA
GetEnvironmentStrings
lstrcmpiW
GetUserDefaultLangID
RtlUnwind
GetModuleHandleW
GetCurrentProcess
GetStartupInfoW
GetConsoleOutputCP
RaiseException
CompareStringA
GetFullPathNameA
VirtualProtect
SetEnvironmentVariableA
WaitForSingleObject
FileTimeToSystemTime
GetUserDefaultLCID
InterlockedDecrement
lstrlenA
CreateProcessW
GetWindowsDirectoryA
CopyFileA
GetModuleHandleA
lstrcmpA

msvcrt

_except_handler3
_iob
strncmp
malloc
__p__commode
__p__environ
_controlfp
_vsnprintf
fopen
_initterm
__setusermatherr
_XcptFilter
calloc
__getmainargs
__set_app_type
__p__fmode
_exit
__p___initenv
wcslen
abort
sprintf
strcpy
_adjust_fdiv
strlen
fputs
memset
_errno
_snprintf

advapi32

RegSetValueExW
SetSecurityDescriptorOwner
RegFlushKey
AllocateAndInitializeSid
RegEnumValueW
OpenSCManagerW
RegOpenKeyExA
InitializeAcl
RegDeleteKeyW
RegEnumValueA
FreeSid
OpenServiceA
EqualSid
DeleteService
RegEnumKeyA
GetSecurityDescriptorDacl

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea8bddbed14736818665d4f73bf7cd23

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

advapi32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 86KB - Virtual size: 85KB

.data Size: 31KB - Virtual size: 31KB

.rsrc Size: 39KB - Virtual size: 39KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 86KB - Virtual size: 85KB

.data
Size: 31KB - Virtual size: 31KB

.rsrc
Size: 39KB - Virtual size: 39KB