8fdddd0b3a6b27a486f64af8ab5412630234a9456221ec41cde7d5d90fe8098a

General

Target

8fdddd0b3a6b27a486f64af8ab5412630234a9456221ec41cde7d5d90fe8098a
Size

332KB
MD5

78f644df41c5a9c6dc2ec79723078220
SHA1

7b7a83ace86eeac5492b68296ccac183ca7dd6b9
SHA256

8fdddd0b3a6b27a486f64af8ab5412630234a9456221ec41cde7d5d90fe8098a
SHA512

9d2bf593e566d0c278656fec671f23e64c79123a260793f026785cd217624a9aeddabaa30fc335b4e6163b91ed67dd5371322010ce612c0c017886c5c9d86e72
SSDEEP

6144:tNwhySG+YTP3VloDnUMi6oU5xV57aS5R3h+YT8TWdJ:tNw0z+almDUMiRovlL+YQM

Score

N/A

Malware Config

Signatures

Files

8fdddd0b3a6b27a486f64af8ab5412630234a9456221ec41cde7d5d90fe8098a
.exe windows x86

226c83d727d9f88b6909e74f695f375d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleHandleA
ExitThread
GetTickCount
GetCurrentThreadId
GetOEMCP
ExitProcess
VirtualFree
CloseHandle
CreateThread
GetComputerNameA
VirtualProtect
GetLastError
GetProcessHeap
VirtualAlloc
GetPrivateProfileStructA
GetCommandLineA
GetVersionExA
HeapFree
HeapAlloc
HeapReAlloc
Sleep
GetCurrentDirectoryA
GetModuleFileNameA
CreateRemoteThread
VirtualQuery
InterlockedExchange
RtlUnwind
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetCurrentProcessId

user32

FindWindowA
RegisterWindowMessageA
wsprintfA
MessageBeep
OpenClipboard
CloseClipboard

advapi32

CredIsMarshaledCredentialA

comctl32

ord17

winmm

timeBeginPeriod

winspool.drv

DeleteMonitorA
AddMonitorA
FreePrinterNotifyInfo

Sections

.text
Size: 296KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.prdauA
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

226c83d727d9f88b6909e74f695f375d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

winmm

winspool.drv

Sections

.text Size: 296KB - Virtual size: 292KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 334KB

.prdauA Size: 8KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 296KB - Virtual size: 292KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 334KB

.prdauA
Size: 8KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 3KB