9418f27ac04bfed34aa5c5a3998883dc96b38d85e340b65504a6d2ac4e41f91f

General

Target

9418f27ac04bfed34aa5c5a3998883dc96b38d85e340b65504a6d2ac4e41f91f
Size

296KB
MD5

a2444c7a69278f7db718b1c3a4a42b40
SHA1

85af85359d95bc2b5919ad079d370a950901aa3f
SHA256

9418f27ac04bfed34aa5c5a3998883dc96b38d85e340b65504a6d2ac4e41f91f
SHA512

eafdd2c383d115ead17b59255640a1d20e05d3941b9c70b387b806c9c0c38d1efe3cfd0cb99ef678a9358743854ab8ea8517a8b806381d4444c02f09e5501051
SSDEEP

3072:ydunwVc3JQkV3TeskJI96ARKOFY0r8ZAhRrn6Y0QeXxdTkCH3Kgr3PrL8T:yUL2AKO5rbhkY0hQCHas3PrC

Score

N/A

Malware Config

Signatures

Files

9418f27ac04bfed34aa5c5a3998883dc96b38d85e340b65504a6d2ac4e41f91f
.exe windows x86

941f51b92894d25acf2f93e4bafac791

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
ExitProcess
LocalAlloc
SetEvent
ResumeThread
ResetEvent
GetStdHandle
CreateSemaphoreA
CreateMutexA
ReadFile
GetVersionExA
LocalFree
GetCurrentDirectoryA
GetCurrentProcess
GetWindowsDirectoryA
GetFileSize
GetCurrentProcessId
WriteFile
DeleteFileA
CreateEventA
GetCurrentThreadId
GetCurrentThread
CreateThread
GetSystemDirectoryA
WaitForSingleObject
ExitThread
GetModuleHandleA
VirtualAlloc
CloseHandle
SetFilePointer
GetLocalTime
OutputDebugStringA
lstrcpyA
ReleaseMutex
lstrlenA

advapi32

GetUserNameA

user32

PostMessageA
GetWindow
GetSystemMetrics
GetClassInfoExA
ShowWindow
GetActiveWindow
CreateDialogParamA
wsprintfA
GetForegroundWindow
RegisterClassA
SendMessageA
FindWindowA
MessageBoxA

ntdll

_chkstk
memcpy
cos
sin

ole32

CoUninitialize

shlwapi

SHGetValueA

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 192KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

941f51b92894d25acf2f93e4bafac791

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

user32

ntdll

ole32

shlwapi

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 192KB - Virtual size: 380KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 192KB - Virtual size: 380KB

.rsrc
Size: 4KB - Virtual size: 1KB