a61d9ea625c9214f95cbbcf19c92ad4559b49985d71700fe3113edb0704da2fa

Sharing

Copy URL Twitter E-mail

General

Target

a61d9ea625c9214f95cbbcf19c92ad4559b49985d71700fe3113edb0704da2fa
Size

652KB
MD5

a120cbe1a4228fd7a798db3b2da58d9a
SHA1

ad01694df2b2f4dde25c0c1f6ec2c13a5cf806e3
SHA256

a61d9ea625c9214f95cbbcf19c92ad4559b49985d71700fe3113edb0704da2fa
SHA512

d872adb3cdec38f5cbc8d466c06b762b6a0c0bb52065cc130681c37227220f4e0ecbd339229e8620c05f5f2ab1c6ebb776ed4df5f567ef8f3bbb4740ad9e3b43
SSDEEP

12288:cfSDXlxNq9D+SsSJUg9Dg+s6o6qU4BxF5Q/qJ37Jd1XgRhEZU:8olxw9iSsSJRJg56mBxF5+qJ3r1XgRS+

Score

N/A

Malware Config

Signatures

Files

a61d9ea625c9214f95cbbcf19c92ad4559b49985d71700fe3113edb0704da2fa
.exe windows x86

25ea17c83abcad1925f0bae28fedb6b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindow
GetDC
SendMessageA
GetClientRect
GetParent
UpdateWindow
EnableWindow
PeekMessageA
TranslateMessage
RegisterClassA
CreateWindowExA
FillRect
BeginPaint
DefWindowProcA
GetSystemMetrics
SetWindowLongA
SetWindowTextA
LoadCursorA
GetDesktopWindow
EndDialog
GetKeyState
IsWindowVisible

advapi32

RegQueryValueExA
RegCreateKeyExA
RegSetValueExW
RegSetValueExA
RegCloseKey

kernel32

GetCurrentProcess
GetConsoleMode
LocalAlloc
FreeEnvironmentStringsW
SetStdHandle
GetCPInfo
GetStringTypeA
HeapReAlloc
DeleteCriticalSection
GetFullPathNameA
LocalFree
LoadResource
FindClose
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
GetVersionExA
FreeEnvironmentStringsA
HeapDestroy
WaitForSingleObject
GetStdHandle
GetStringTypeW
GetEnvironmentStringsW
GetTickCount
GetCommandLineA
GetCurrentThreadId
GetCurrentProcessId
GetLastError
GetCurrentThread
GetModuleHandleA
ExitProcess
VirtualAlloc
Sleep
VirtualFree
HeapCreate
GetModuleHandleW
lstrcpynA
CloseHandle
ReadFile
MapViewOfFile
RaiseException
HeapSize
WideCharToMultiByte
GetEnvironmentStrings
FileTimeToLocalFileTime
LCMapStringA
GetConsoleCP
LCMapStringW
InterlockedIncrement
CreateFileA
GetFileType
CreateEventA
CreateFileW
FindNextFileA
FindFirstFileA
WaitForMultipleObjects
GetWindowsDirectoryA
DeleteFileA
GetFileSize
LoadLibraryA
FlushFileBuffers
TlsAlloc
QueryPerformanceCounter
GetExitCodeProcess
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
SetEndOfFile
SetFilePointer
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA

Sections

.text
Size: 612KB - Virtual size: 938KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25ea17c83abcad1925f0bae28fedb6b1

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 612KB - Virtual size: 938KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 612KB - Virtual size: 938KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 18KB - Virtual size: 18KB