6e84a083f7e7530cf969578385a11ef2334d5955659d649c4119c5b8c708c1e2

General

Target

6e84a083f7e7530cf969578385a11ef2334d5955659d649c4119c5b8c708c1e2
Size

119KB
MD5

92509f5de23ef3527904eea6d13a61f0
SHA1

09ca59e4b4dbb3450366b0790772cbf4ef855733
SHA256

6e84a083f7e7530cf969578385a11ef2334d5955659d649c4119c5b8c708c1e2
SHA512

64c603af5491741c670d029f80d6f42fd5ffb2c3c4ecfce670c4557f9d5b187347d5c527e5c70bb35f2ddb3f77e47a6a57c425965d806c00bc5ba256fa45619d
SSDEEP

3072:41tVdRZG7Rouee/lWVpRWlo1c7sMF6Y0b:ut0KuR/sXXu7BJ0

Score

N/A

Malware Config

Signatures

Files

6e84a083f7e7530cf969578385a11ef2334d5955659d649c4119c5b8c708c1e2
.exe windows x86

884355e80018f4a338b61ec9cbdfe872

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetKeyState
GetSystemMetrics
InsertMenuItemA
GetSysColor
FindWindowA
WindowFromPoint
GetSysColorBrush
GetCursorPos
UpdateWindow
GetDesktopWindow
CreatePopupMenu
UnregisterClassA

msvcrt

_strnicmp
fgets
_setjmp
calloc
wcschr
rand
memcmp
__setusermatherr
strrchr
cos
_exit
puts
_assert

kernel32

GetCurrentThreadId
CompareStringA
GetDiskFreeSpaceA
lstrcpyA
FreeEnvironmentStringsW
MulDiv
VirtualProtectEx
IsBadReadPtr
GetFileType
GetLocaleInfoW
GetExitCodeProcess
GetSystemTimeAsFileTime
QueryPerformanceCounter
UnhandledExceptionFilter
GetCurrentProcessId
GetTickCount
GetCommandLineA
GlobalLock
LCMapStringA

ole32

OleUninitialize
CoUninitialize
StgCreateDocfileOnILockBytes
CoLoadLibrary
StringFromCLSID
CoCreateGuid
ReleaseStgMedium
StringFromGUID2
OleIsCurrentClipboard
CreateILockBytesOnHGlobal

advapi32

RegEnumValueA
GetTokenInformation
RegQueryValueExA
EqualSid
OpenProcessToken

oleaut32

VariantClear
CreateErrorInfo
SysStringLen
SafeArrayRedim
SysAllocStringLen
SysFreeString
SafeArrayCreate

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

884355e80018f4a338b61ec9cbdfe872

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

ole32

advapi32

oleaut32

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 45KB - Virtual size: 45KB

.rsrc Size: 58KB - Virtual size: 57KB

.reloc Size: 1024B - Virtual size: 796B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 45KB - Virtual size: 45KB

.rsrc
Size: 58KB - Virtual size: 57KB

.reloc
Size: 1024B - Virtual size: 796B