540104d0289d69c36a3a441d0bfa0176a38a4ed9562cb8591e6d26747b9506d2

Sharing

Copy URL Twitter E-mail

General

Target

540104d0289d69c36a3a441d0bfa0176a38a4ed9562cb8591e6d26747b9506d2
Size

121KB
MD5

44e401df6b26cbe431a7a3e7e8e5a710
SHA1

4478c862801481c907d822264e1856eb3cd4c86b
SHA256

540104d0289d69c36a3a441d0bfa0176a38a4ed9562cb8591e6d26747b9506d2
SHA512

030b802e0aa4cd41cd77228a302bcefde593182264d97a2cb270b15a331d4ffa98193a4f06d128e341ba7ec25eb3040297f5e96564130e4330b87716e2234a6d
SSDEEP

3072:A5urm0irBIlvbLbe7m52FADA2oSSNgA7fIjuN:wuySlTfMm52aD4N

Score

N/A

Malware Config

Signatures

Files

540104d0289d69c36a3a441d0bfa0176a38a4ed9562cb8591e6d26747b9506d2
.exe windows x86

0921019d302c00b90b744a6469562fbc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyExA
RegEnumKeyExW
RegGetKeySecurity
RegCreateKeyW
RegDeleteValueW
RegDeleteValueA
RegQueryValueA
RegDeleteKeyA
RegCreateKeyExW
RegFlushKey
RegQueryValueExW
RegEnumKeyW
RegQueryInfoKeyA
RegEnumKeyA
RegReplaceKeyA
RegLoadKeyW
RegEnumValueA
RegQueryValueExA
RegQueryInfoKeyW

user32

CopyRect
LoadMenuA
DialogBoxParamA
GetDlgItem
EndDialog
CreateIcon
DialogBoxParamW
CalcMenuBar
DrawTextA
GetFocus
GetMenu
InsertMenuA
CloseWindow
LoadCursorA
IsWindow
AlignRects
GetWindowTextLengthA
GetDC

comctl32

ImageList_GetImageCount
ImageList_Destroy
ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_Remove
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_BeginDrag
ImageList_DrawIndirect
ImageList_Draw
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_DragMove
ImageList_Read
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_Merge

kernel32

GetFileAttributesA
GetStringTypeA
lstrcpynA
GetDateFormatA
GetStringTypeW
HeapFree
lstrlenA
GetStdHandle
GetModuleFileNameA
GetCPInfo
CloseHandle
WideCharToMultiByte
GlobalFree
GetLastError
GetLocalTime
DeleteFileA
lstrcmpiA
FreeLibrary

Sections

.RJuzvA
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.aCdIq
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.igPa
Size: 7KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.FwwP
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xxxN
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0921019d302c00b90b744a6469562fbc

Headers

File Characteristics

Imports

advapi32

user32

comctl32

kernel32

Sections

.RJuzvA Size: 15KB - Virtual size: 14KB

.aCdIq Size: 93KB - Virtual size: 92KB

.igPa Size: 7KB - Virtual size: 134KB

.FwwP Size: 1024B - Virtual size: 1KB

.xxxN Size: 1024B - Virtual size: 1KB

.RJuzvA
Size: 15KB - Virtual size: 14KB

.aCdIq
Size: 93KB - Virtual size: 92KB

.igPa
Size: 7KB - Virtual size: 134KB

.FwwP
Size: 1024B - Virtual size: 1KB

.xxxN
Size: 1024B - Virtual size: 1KB