ab3c34ba98a660c9d2280ffb2987aae0009c9b3372f3e1a78b4e2e6e9eb03576

General

Target

ab3c34ba98a660c9d2280ffb2987aae0009c9b3372f3e1a78b4e2e6e9eb03576
Size

96KB
MD5

41b9d59d5c6728377d34d63725a45c81
SHA1

91fce1532c3390c9492f48288e19c3cd37b4c8ec
SHA256

ab3c34ba98a660c9d2280ffb2987aae0009c9b3372f3e1a78b4e2e6e9eb03576
SHA512

411cef39d8936ffab3967349cb4522b1ae85a85e6ee3a371ecb78f0507a1cf4312df37aa6a93e8d77b4f56e9f128e07030aca7e2f5ee2e5020d9a80d1dc6116c
SSDEEP

1536:ER3yFWSsYoJEeH/7vm6JTqXFuWEouKmor/S:ERjZYoJE06607Ecmor/

Score

N/A

Malware Config

Signatures

Files

ab3c34ba98a660c9d2280ffb2987aae0009c9b3372f3e1a78b4e2e6e9eb03576
.exe windows x86

368551fcce902a1468e716acf66b12ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
GetFileSize
WriteFile
LockResource
SizeofResource
LoadResource
FindResourceA
CreateFileA
GetModuleFileNameA
GetVersionExA
GetEnvironmentVariableA
lstrcatA
lstrcpyA
ReadFile
MoveFileExA
Sleep
GetProcAddress
LoadLibraryA
CreateProcessA
CopyFileA
GetTickCount
GetCurrentProcess
GetStringTypeA
LCMapStringW
CreateToolhelp32Snapshot
Process32First
OpenProcess
TerminateProcess
Process32Next
CloseHandle
lstrcmpiA
GetShortPathNameA
LCMapStringA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
GetStringTypeW

user32

wsprintfA

advapi32

RegEnumValueA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

shell32

SHGetSpecialFolderPathA
ShellExecuteA

shlwapi

PathFileExistsA

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

368551fcce902a1468e716acf66b12ff

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

shlwapi

Sections

.text Size: 16KB - Virtual size: 12KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 68KB - Virtual size: 64KB

.text
Size: 16KB - Virtual size: 12KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 68KB - Virtual size: 64KB