bdf682de4740fa2ad584a318575a00e568e3d8fe9d6a17fa7630509011db248f

General

Target

bdf682de4740fa2ad584a318575a00e568e3d8fe9d6a17fa7630509011db248f
Size

448KB
MD5

90a0dd9c6db115e0a00e41cee22d2c10
SHA1

fa07b914a68190fc80d3c87918c1fc0023f81bf7
SHA256

bdf682de4740fa2ad584a318575a00e568e3d8fe9d6a17fa7630509011db248f
SHA512

9ac081f6c0fd4690b7455de08b5930820df8e6b54db6dea5225b17ccb23cf84a7214aac43a50d5455cdb1c011b5fc08d6a1bb99ba92b6d087fd724807f3b6427
SSDEEP

12288:3XyIwPB75vySiDSII4icYuvQuukLNguRw5yk:3XyQGQizvuvN3

Score

N/A

Malware Config

Signatures

Files

bdf682de4740fa2ad584a318575a00e568e3d8fe9d6a17fa7630509011db248f
.exe windows x86

abfa75af9848b4a26a5f838234edd518

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
GetCurrentProcessId
VirtualAlloc
FindResourceA
GetVersion
CreateFileA
Sleep
GetConsoleMode
GetTimeZoneInformation
FormatMessageW
LocalFree
FreeLibrary
ExpandEnvironmentStringsA
HeapReAlloc
GetACP
WriteFile
FindFirstFileA
GetModuleHandleA
SetFilePointer
GetProcAddress
HeapSize
MultiByteToWideChar
LockResource
LocalAlloc
GetPrivateProfileStringA
LeaveCriticalSection
FreeEnvironmentStringsA
LoadLibraryA
GlobalUnlock
ExitProcess
HeapDestroy
GetOEMCP
SetHandleCount
LCMapStringW
EnterCriticalSection
GetStdHandle
GetLastError
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
HeapFree
RtlUnwind
InterlockedDecrement
InitializeCriticalSection
GetCPInfo
GetStringTypeA
GetStringTypeW
LCMapStringA

user32

FillRect
GetDlgItem
SendMessageA
SetWindowLongA
EnableWindow
DefWindowProcA
PostQuitMessage
BeginPaint

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 392KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abfa75af9848b4a26a5f838234edd518

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 28KB - Virtual size: 26KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 392KB - Virtual size: 392KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 392KB - Virtual size: 392KB

.rsrc
Size: 4KB - Virtual size: 2KB