8f2afd75a6d23c80a892455575081167921f284970a54be1a57c85b7da85be2e

General

Target

8f2afd75a6d23c80a892455575081167921f284970a54be1a57c85b7da85be2e
Size

477KB
MD5

922c788d5cddd0aef21faba9802c10a0
SHA1

a68d51581114b421592e60d76393202f09623cea
SHA256

8f2afd75a6d23c80a892455575081167921f284970a54be1a57c85b7da85be2e
SHA512

86bcfe05ea072701da7e0fddad527b5235a73241505b2684c55b56dedb13754361adfce3844b88a6b7db64cbdfccfa4db0ce018d20b669798975a304d9d80210
SSDEEP

12288:HkVJpo/wjiVO8VNFuXMOKlmipcOn7aeoBWGtQ3/:HkVJbjiVOcXuX9KJp5nKW/3

Score

N/A

Malware Config

Signatures

Files

8f2afd75a6d23c80a892455575081167921f284970a54be1a57c85b7da85be2e
.exe windows x86

5eb2f3fefb5d23677da3ae0270e200a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemWindowsDirectoryW
WriteFile
GetModuleHandleW
EnumCalendarInfoW
LocalSize
PurgeComm
OpenSemaphoreW
CreateWaitableTimerA
GetProcessTimes
GetAtomNameA
FileTimeToLocalFileTime
GetWriteWatch
_lclose
RtlUnwind
GetCurrencyFormatA
GetProcessAffinityMask
_lwrite
GetProcessHeaps
OpenProcess
ResetEvent

user32

CharUpperW
GetDC
OemToCharBuffA
SetWindowPos
ReleaseDC
GetScrollInfo
SetScrollInfo
EndPaint
GetWindowLongW
ClientToScreen
IsCharAlphaNumericW
GetKBCodePage
EndDialog
GetDlgItem
InvalidateRect
GetActiveWindow
GetWindowTextLengthW
wsprintfW
FillRect
SetCursor
UpdateWindow
GetDesktopWindow
SetDlgItemTextW
GetWindow
GetWindowRect
PostMessageW
DefWindowProcW
SystemParametersInfoW
CharNextW
MoveWindow
EnableWindow
DestroyWindow
GetSysColor
GetFocus
IsWindow
ShowWindow
GetPropW
SendDlgItemMessageW
GetSysColorBrush
GetWindowTextW
GetNextDlgTabItem

advapi32

AdjustTokenPrivileges
RegSaveKeyW
RegFlushKey
RegSetValueExW
RegOpenKeyExA
RegSetValueW
RegSetValueExA
RegCloseKey
RegLoadKeyW
RegRestoreKeyW
LookupPrivilegeValueW
RegDeleteKeyW
RegCreateKeyExW
LookupAccountNameW
RegEnumKeyW
RegConnectRegistryW
RegEnumValueW
RegCreateKeyW
RegDeleteValueW
RegUnLoadKeyW

Sections

.text
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 158KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 291B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5eb2f3fefb5d23677da3ae0270e200a6

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 164KB - Virtual size: 164KB

.data Size: 158KB - Virtual size: 261KB

.data Size: 512B - Virtual size: 291B

.rdata Size: 2KB - Virtual size: 2KB

.rsrc Size: 151KB - Virtual size: 150KB

.text
Size: 164KB - Virtual size: 164KB

.data
Size: 158KB - Virtual size: 261KB

.data
Size: 512B - Virtual size: 291B

.rdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 151KB - Virtual size: 150KB