025814bed2faabeb97b11c6b8cbe68ca93150b5e3a7331332afb1041b2c2fdab

Sharing

Copy URL Twitter E-mail

General

Target

025814bed2faabeb97b11c6b8cbe68ca93150b5e3a7331332afb1041b2c2fdab
Size

164KB
MD5

91a528e19d1b25b4eaeef106055693f7
SHA1

38bea36f5789d2cc1232289d892515b2fef38ded
SHA256

025814bed2faabeb97b11c6b8cbe68ca93150b5e3a7331332afb1041b2c2fdab
SHA512

e518793467c04568d95c2b9998012b9111957583b5144d13b3b8a97005c23f24b19cd60c4459d0a4e0fd7596001d415ba5f9f1b6cde4712ccbc8aaa0560c27f1
SSDEEP

3072:7addEfLARVttqTTZQVbaAfViAENN4piTcP12v9NmZmeB:+pVVVipI12v

Score

N/A

Malware Config

Signatures

Files

025814bed2faabeb97b11c6b8cbe68ca93150b5e3a7331332afb1041b2c2fdab
.exe windows x86

291c19563f4047086752edd26ce92cb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowThreadProcessId
CallWindowProcA
FillRect
SendMessageA
GetTopWindow
CreateWindowExA
RemoveMenu
LoadIconA
GetDC
LoadBitmapA
CreateMenu
LoadCursorA
OemToCharA
GetPropA
UpdateWindow
ShowCursor
GetSysColor
GetSystemMetrics
DefWindowProcA
FindWindowA
GetMenuState
EndPaint
GetCursorPos
GetSysColorBrush
WaitMessage
MessageBoxA
GetKeyState
GetDesktopWindow
SetClipboardData
SetFocus
GetSubMenu

kernel32

DeleteFileA
GetCurrentDirectoryA
GetModuleHandleA
GetShortPathNameA
GetEnvironmentStringsW
IsBadCodePtr
GetStringTypeW
GetSystemTime
FreeEnvironmentStringsA
SetStdHandle
SystemTimeToFileTime
LocalAlloc
GetConsoleOutputCP
GetFileTime
VirtualQuery
FormatMessageA
GetStringTypeExA
VirtualFree
LCMapStringW
SetEnvironmentVariableA
VirtualProtect
GetACP
GetUserDefaultLCID
GetSystemDirectoryW
SetCurrentDirectoryA
QueryPerformanceCounter
GlobalLock
GetUserDefaultLangID
WriteConsoleA
GetModuleHandleW
LCMapStringA
GetLocaleInfoW
GetCurrentProcess

msvcrt

_XcptFilter
strncmp
__p___initenv
_snprintf
realloc
atoi
_controlfp
getenv
_exit
__p__commode
_initterm
__p__fmode
__setusermatherr
__getmainargs
_except_handler3
memcpy
memmove
strchr
_adjust_fdiv
__dllonexit
memset
_write
_iob
atexit
__set_app_type
fopen

advapi32

RegDeleteKeyW
CryptDestroyHash
CheckTokenMembership
RegOpenKeyExW
IsValidSid
GetTokenInformation
SetSecurityDescriptorDacl
AdjustTokenPrivileges
RegOpenKeyExA
EqualSid
SetSecurityDescriptorGroup
RegDeleteValueW
RegCreateKeyExW
RegEnumKeyExA
SetSecurityDescriptorOwner
RegQueryInfoKeyW
ControlService

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

291c19563f4047086752edd26ce92cb1

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

advapi32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 80KB - Virtual size: 79KB

.data Size: 29KB - Virtual size: 29KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 80KB - Virtual size: 79KB

.data
Size: 29KB - Virtual size: 29KB

.rsrc
Size: 40KB - Virtual size: 39KB