95a9530841fe39422ebe0a2b4b6ac661a9be0829bdc9d2d279c9d52666846c16

Sharing

Copy URL Twitter E-mail

General

Target

95a9530841fe39422ebe0a2b4b6ac661a9be0829bdc9d2d279c9d52666846c16
Size

144KB
MD5

911982f301c3d04be5f33a4d76342d79
SHA1

3f53ac082aa1b8864ed470e5061fcb44194e2aa1
SHA256

95a9530841fe39422ebe0a2b4b6ac661a9be0829bdc9d2d279c9d52666846c16
SHA512

70d09d5012623a26b792b093b54516c9a6d5955a1c2fd9566c08fdc376d048834d9e279372f155a89d279f752228a9fb7713535d67d91047d3feac119d02b40d
SSDEEP

3072:Etsds/3PF/mTyOQw3FmALDjvagaWyYcTXmzV+Z8mu:Etsdm/mT3FmMjCgaWF7EZ8m

Score

N/A

Malware Config

Signatures

Files

95a9530841fe39422ebe0a2b4b6ac661a9be0829bdc9d2d279c9d52666846c16
.exe windows x86

371c2590e86e39f9acc1926aad6a4443

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
VirtualAlloc
EnumCalendarInfoA
ExitProcess
RaiseException
SetThreadLocale
FindClose
ResetEvent
IsBadReadPtr
VirtualFree
SizeofResource
GetACP
VirtualQuery
GlobalAddAtomA
GetTempPathA
LocalAlloc
lstrcmpA
HeapDestroy
GetThreadLocale
GlobalFindAtomA
FreeLibrary
GetCommandLineA
InitializeCriticalSection

user32

GetMessagePos
CreateMenu
SetActiveWindow
MessageBoxA
ReleaseCapture
GetWindowRect
GetScrollPos
KillTimer
IsIconic
GetWindowTextLengthA
GetCursor
IsZoomed
DestroyMenu
CreateIcon
SetWindowLongW
PostQuitMessage
GetMenuStringA
DestroyIcon
DefWindowProcA
EnableWindow
IsDialogMessageW
CharNextW
SetScrollPos
GetClipboardData
WaitMessage
GetCursorPos
GetSysColorBrush
GetDCEx
CharNextA
IsMenu
CreateWindowExA
SendMessageA
LoadBitmapA
WindowFromPoint
IsWindow
GetMenu
IsWindowUnicode
GetForegroundWindow
DrawEdge
CloseClipboard
UpdateWindow
IntersectRect
LoadKeyboardLayoutA
SetWindowLongA
GetScrollInfo
GetKeyboardLayout
DrawIcon
SetWindowTextA
ScreenToClient
DestroyCursor
GetKeyboardLayoutNameA
GetDesktopWindow
OffsetRect
GetWindowDC
ShowScrollBar
IsDlgButtonChecked
GetLastActivePopup
CallNextHookEx
InvalidateRect
SetPropA
DestroyWindow
CharUpperA
wsprintfA

advapi32

RegEnumValueA
RegQueryInfoKeyA
RegQueryValueA
RegQueryValueExA

Exports

Exports

_gZC2N0v7kj
kvqwhM@16

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 512B - Virtual size: 214B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

371c2590e86e39f9acc1926aad6a4443

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.data Size: 12KB - Virtual size: 123KB

.edata Size: 105KB - Virtual size: 105KB

.idata Size: 4KB - Virtual size: 3KB

.bdata Size: 512B - Virtual size: 214B

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 12KB - Virtual size: 11KB

.data
Size: 12KB - Virtual size: 123KB

.edata
Size: 105KB - Virtual size: 105KB

.idata
Size: 4KB - Virtual size: 3KB

.bdata
Size: 512B - Virtual size: 214B

.rsrc
Size: 9KB - Virtual size: 8KB