b249226d332d2d04506460d072db6a30f20f4c4eda1e5404bb79b707b5af077a

Sharing

Copy URL Twitter E-mail

General

Target

b249226d332d2d04506460d072db6a30f20f4c4eda1e5404bb79b707b5af077a
Size

124KB
MD5

4d97aa2d277d66461e4b049c276c31f0
SHA1

468ead731b210dcba88d99b53271a97c0ac41154
SHA256

b249226d332d2d04506460d072db6a30f20f4c4eda1e5404bb79b707b5af077a
SHA512

c56ed83b246a0f1e0ed2864fd2d052ab934bcc7dc53a245bd3ab24c584c0cd25f5d62ba1a68c7b98ed718e18ac949bb3bbfe5cae455d04b8e1ecee7156471024
SSDEEP

1536:QuTv4435hNag/gvHpSywn+uTFpSywn+uT8SY+A37feaCMJDmYsLIb4PvYqHB/Af/:Qub443Hf/gvHEhEQSDADeak7dJHB/AX

Score

N/A

Malware Config

Signatures

Files

b249226d332d2d04506460d072db6a30f20f4c4eda1e5404bb79b707b5af077a
.exe windows x86

8ece1c6a6c50c56f3b7a136a55bfa7ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
SetFileAttributesA
GetFileAttributesA
RemoveDirectoryA
HeapFree
GetCurrentDirectoryA
GetProcessHeap
GetVersionExA
WritePrivateProfileStringA
WritePrivateProfileSectionA
GetPrivateProfileSectionA
lstrcatA
GetWindowsDirectoryA
Sleep
lstrcpyA
CloseHandle
CreateProcessA
CopyFileA
GetTempPathA
GetCurrentProcessId
ReadFile
HeapAlloc
GetFileSize
CreateFileA
WaitForSingleObject
OpenProcess
GetProcAddress
LoadLibraryExA
SetCurrentDirectoryA
lstrcmpA
lstrlenA
lstrcpynA
GetLastError
LoadLibraryA
CreateMutexA
MoveFileExA
GetModuleFileNameA
ExitProcess
HeapReAlloc
FreeLibrary
GetACP
GetCPInfo
VirtualAlloc
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
FreeEnvironmentStringsW
WideCharToMultiByte
GetOEMCP
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA

user32

GetDlgItem
DialogBoxParamA
MessageBoxA
wsprintfA
LoadStringA
SendMessageA
FindWindowA
EndDialog
EnableWindow
SetFocus
ShowWindow
InvalidateRect
UpdateWindow
SetDlgItemTextA
SystemParametersInfoA
GetWindowRect
MoveWindow
SetTimer
PostMessageA
KillTimer

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegDeleteKeyA
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExA

comctl32

ord17

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ece1c6a6c50c56f3b7a136a55bfa7ba

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 88KB - Virtual size: 85KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 88KB - Virtual size: 85KB