b21226e27e66e8ffdf7e690fcb19ef2c09a03a1cd05b3bc1676510d2d99b26fb

General

Target

b21226e27e66e8ffdf7e690fcb19ef2c09a03a1cd05b3bc1676510d2d99b26fb
Size

120KB
MD5

8194768a042dee8c033ef77932534fe0
SHA1

cea3c16c015125744103ae404a55d0e9962ded73
SHA256

b21226e27e66e8ffdf7e690fcb19ef2c09a03a1cd05b3bc1676510d2d99b26fb
SHA512

e1c525ccbf43a2f8c16f912a71b6fc91ff6bb8dc600762ced13929eafc5a958d302842783fa67adf91936f896934a5bfea20dadd42294fdb90d2f0e5ef89a4f2
SSDEEP

3072:+yVIEW0QksidrpisuckWlbGWNAdYJTAeJTAuRU:+yV80z/FVGWi

Score

N/A

Malware Config

Signatures

Files

b21226e27e66e8ffdf7e690fcb19ef2c09a03a1cd05b3bc1676510d2d99b26fb
.dll windows x86

e0e8e2e67a92bea9bb774434b5f8966c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
DeleteFileW
FlushFileBuffers
FormatMessageW
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileSize
GetFullPathNameW
GetLastError
GetModuleHandleA
GetProcessHeap
GetStartupInfoA
GetSystemTimeAsFileTime
CloseHandle
GetTimeFormatW
GetVersionExA
HeapAlloc
HeapFree
LocalFree
QueryPerformanceCounter
SetCurrentDirectoryW
SetUnhandledExceptionFilter
SystemTimeToFileTime
TerminateProcess
UnhandledExceptionFilter
WriteFile
lstrcatW
lstrcpyW
lstrlenW
LoadLibraryW
GetProcAddress
GetTickCount
VirtualAlloc

user32

GetSystemMetrics
SetForegroundWindow
GetMenuItemCount
OpenIcon
LoadCursorA
GetMessageA
TranslateMessage
DispatchMessageA
GetSysColor

advapi32

RegQueryValueExW
RegSetValueExW
RegCloseKey

msvcrt

memset
memcpy

Sections

.text
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text3
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0e8e2e67a92bea9bb774434b5f8966c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

Sections

.text Size: 86KB - Virtual size: 85KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 336B

.text3 Size: 512B - Virtual size: 8B

.rsrc Size: 29KB - Virtual size: 29KB

.reloc Size: 1024B - Virtual size: 32KB

.text
Size: 86KB - Virtual size: 85KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 336B

.text3
Size: 512B - Virtual size: 8B

.rsrc
Size: 29KB - Virtual size: 29KB

.reloc
Size: 1024B - Virtual size: 32KB