eb55c59522efc27826b7d268f9169636235c318a1a0baf1dee3b87baf8c1c8cb

Sharing

Copy URL Twitter E-mail

General

Target

eb55c59522efc27826b7d268f9169636235c318a1a0baf1dee3b87baf8c1c8cb
Size

268KB
MD5

4957ca970001a31e5c33c48f879e15e0
SHA1

4bc32837a9469865a5e2254b9da2035c9c41fae8
SHA256

eb55c59522efc27826b7d268f9169636235c318a1a0baf1dee3b87baf8c1c8cb
SHA512

e5286c5b43181799d6ee220e3cb289fda063d60ad5792001e85dc39f66832520a01ce64cd0be7e853fa4df75cb8f4e850f972fdf40ea85b7cb51ba8b757995b9
SSDEEP

6144:bNd40rDTmKdbdHeqDsAiL1N1uALAes7XkaheKp0OfTZhfDmPm6Kjx3xDV1j:bw0rDTmKdbdHeiipuALAeqk0+OfTZh6i

Score

N/A

Malware Config

Signatures

Files

eb55c59522efc27826b7d268f9169636235c318a1a0baf1dee3b87baf8c1c8cb
.exe windows x86

66f693303e944e16c86d4e28934d044c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegCloseKey
RegCreateKeyA
RegSetValueExA
RegQueryValueExA

user32

SendMessageA
FindWindowA

kernel32

LocalFree
SetEndOfFile
SetEnvironmentVariableA
GetACP
CompareStringW
GetOEMCP
GetCPInfo
CreateProcessA
CompareStringA
GetExitCodeProcess
SetStdHandle
WaitForSingleObject
GetEnvironmentStringsW
GetEnvironmentStrings
RtlUnwind
FreeEnvironmentStringsA
UnhandledExceptionFilter
ReadFile
SetConsoleMode
GetConsoleMode
GetStdHandle
WriteFile
FindClose
FindNextFileA
FindFirstFileA
GetWindowsDirectoryA
GetSystemTimeAdjustment
GetSystemTime
GetCurrentProcess
QueryPerformanceCounter
GetTickCount
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetCurrentThreadId
GetProcAddress
LoadLibraryA
FreeLibrary
FormatMessageA
GetLastError
SetCurrentDirectoryA
GetCurrentDirectoryA
GetVersion
FreeEnvironmentStringsW
CreateFileA
GetFileAttributesA
GetEnvironmentVariableA
GetModuleFileNameA
ExitProcess
TerminateProcess
GetTimeZoneInformation
GetLocalTime
HeapAlloc
HeapReAlloc
HeapFree
GetStringTypeW
GetCommandLineA
WideCharToMultiByte
FlushFileBuffers
SetHandleCount
GetFileType
GetStartupInfoA
MultiByteToWideChar
GetStringTypeA
HeapCreate
LCMapStringA
LCMapStringW
HeapDestroy
VirtualFree
VirtualAlloc
SetFilePointer

Sections

.text
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.prdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

66f693303e944e16c86d4e28934d044c

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.text Size: 180KB - Virtual size: 177KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 32KB - Virtual size: 50KB

.rsrc Size: 4KB - Virtual size: 1KB

.prdata Size: 20KB - Virtual size: 20KB

.text
Size: 180KB - Virtual size: 177KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 32KB - Virtual size: 50KB

.rsrc
Size: 4KB - Virtual size: 1KB

.prdata
Size: 20KB - Virtual size: 20KB