7cb7873642d3f39e65189a699c6465764d4bb78a9fe98ff4f06ed86d4bb212ab

Sharing

Copy URL Twitter E-mail

General

Target

7cb7873642d3f39e65189a699c6465764d4bb78a9fe98ff4f06ed86d4bb212ab
Size

618KB
MD5

a0c149c2af960499cf14bf637c850080
SHA1

8153ed46307de37e0f9eb642d22158f9488639f1
SHA256

7cb7873642d3f39e65189a699c6465764d4bb78a9fe98ff4f06ed86d4bb212ab
SHA512

96ff643645cf3c501a45211c78ec216da58a54d9e229b6060df87e06ae54047c55382f99be026bed81eb99a89b3ddff9af85e39ce79d20335c6cb3aae66c89fb
SSDEEP

12288:YB1aqIc2bpOOq1nQM+Qsl2BvaXIrXojpDfhyWK9n9pyuAbMGt4EYDQ:0IcYpOOQqN2BvaXIr0ZyX99suAgS48

Score

N/A

Malware Config

Signatures

Files

7cb7873642d3f39e65189a699c6465764d4bb78a9fe98ff4f06ed86d4bb212ab
.exe windows x86

a2857ec7eb0eb9bcc34165553a752be1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetCurrentThreadId
ExitProcess
GetCommandLineA
HeapAlloc
GetProcessHeap
GetOEMCP
VirtualAlloc
FindResourceA
VirtualFree
WriteFile
HeapCreate
IsValidCodePage
CreateProcessA
GetModuleHandleW
GetACP
CloseHandle
SetFilePointer
TlsFree
GetConsoleMode
RaiseException
InterlockedCompareExchange
Sleep
HeapSize
WideCharToMultiByte
GetCommandLineW
SetFileTime
GetEnvironmentStrings
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
LeaveCriticalSection
CreateFileA
TlsSetValue
GetFileType
CreateFileW
CreateEventW
WaitForMultipleObjects
CompareStringA
CompareStringW
GetProcAddress
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetCurrentProcessId
TlsAlloc
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
WriteConsoleW
GetLocaleInfoA
GlobalAlloc
WriteConsoleA
TerminateProcess
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
GetModuleFileNameW
InterlockedDecrement
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
SetEvent
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
GetCPInfo
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
lstrcatA
LocalAlloc
GetCurrentProcess
DeleteCriticalSection
GetFileAttributesW
HeapFree
HeapDestroy
SetEndOfFile
WaitForSingleObject
GetFileAttributesA
GetConsoleOutputCP
GetStdHandle
GetVersion
GetModuleHandleA
GetLastError
GetVersionExA
GetCurrentThread

user32

MessageBoxA
MoveWindow
GetDesktopWindow
TrackPopupMenu
LoadCursorA
ScreenToClient
GetDlgItem
SetTimer
GetSubMenu
EndDialog
SetWindowLongA
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
ReleaseDC
FillRect
CreateWindowExA
GetWindowLongA
EnableMenuItem
GetWindow
IsWindowEnabled
TranslateMessage
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
GetKeyState
GetClientRect
GetDC
EndPaint
DispatchMessageA
SetWindowPos
PostQuitMessage
SendMessageA
CallWindowProcA
GetFocus
SetCursor
IsWindowVisible

advapi32

RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 582KB - Virtual size: 908KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2857ec7eb0eb9bcc34165553a752be1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 582KB - Virtual size: 908KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 10KB - Virtual size: 10KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 582KB - Virtual size: 908KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 18KB - Virtual size: 18KB