109addbd116fbee828b5da267d55dfbb43a40ae11222be4c80a2c2742152e205

Sharing

Copy URL

Twitter E-mail

General

Target

109addbd116fbee828b5da267d55dfbb43a40ae11222be4c80a2c2742152e205
Size

181KB
MD5

80277703667ef3078fb8177719629f60
SHA1

ad22f27da815e10525cf4832721433404936edb1
SHA256

109addbd116fbee828b5da267d55dfbb43a40ae11222be4c80a2c2742152e205
SHA512

54eec88ccc2a61b29d33b91fbf0f777a9c933545236fa9b2d29a7db64640d8a1de2b4a6e8d830020e2ca9e6adb72adb6419bbe7450cba61af95e07915375b08f
SSDEEP

3072:hB89lEpGaJUo89EhEPptMe7ci4zjSkQsLf5CJf:hB7YIkWlKsLf4d

Score

N/A

Malware Config

Signatures

Files

109addbd116fbee828b5da267d55dfbb43a40ae11222be4c80a2c2742152e205
.exe windows x86

965b369ea99b36d92ce8d289a3ad4e32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileA
SetCurrentDirectoryA
lstrcpyA
GetCurrentDirectoryA
lstrcatA
DeleteFileA
SetFileAttributesA
GetFileAttributesA
RemoveDirectoryA
HeapFree
GetProcessHeap
GetVersionExA
WritePrivateProfileStringA
WritePrivateProfileSectionA
GetPrivateProfileSectionA
GetWindowsDirectoryA
MoveFileExA
GetModuleFileNameA
CloseHandle
CreateProcessA
CopyFileA
GetTempPathA
GetCurrentProcessId
ReadFile
HeapAlloc
GetFileSize
CreateFileA
WaitForSingleObject
FindNextFileA
GetProcAddress
LoadLibraryExA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
GetStringTypeW
GetStringTypeA
WriteFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
LCMapStringW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
FindClose
Sleep
lstrlenA
lstrcpynA
lstrcmpA
LoadLibraryA
CreateMutexA
FreeLibrary
HeapDestroy
GetEnvironmentVariableA
OpenProcess
GetLastError
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetCPInfo
GetACP
GetOEMCP

user32

InvalidateRect
UpdateWindow
SetDlgItemTextA
SystemParametersInfoA
GetWindowRect
MoveWindow
SetTimer
GetDlgItem
ShowWindow
EnableWindow
EndDialog
KillTimer
PostMessageA
FindWindowA
SendMessageA
LoadStringA
wsprintfA
MessageBoxA
DialogBoxParamA
SetFocus

advapi32

RegDeleteKeyA
RegCreateKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA

shell32

SHChangeNotify

comctl32

ord17

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

965b369ea99b36d92ce8d289a3ad4e32

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

comctl32

Sections

.text Size: 36KB - Virtual size: 33KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 120KB - Virtual size: 120KB

.text
Size: 36KB - Virtual size: 33KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 120KB - Virtual size: 120KB