3444c223866508d0bd3e1ff4d5ebedb5455202e1ec4744291707bb92814f18fa

General

Target

3444c223866508d0bd3e1ff4d5ebedb5455202e1ec4744291707bb92814f18fa
Size

120KB
MD5

5c3d6d88bbde637f300008527b3c87e0
SHA1

6f4aa6bf55c72e84bc39924d29e14842768d2ee3
SHA256

3444c223866508d0bd3e1ff4d5ebedb5455202e1ec4744291707bb92814f18fa
SHA512

56c2fad25ac9b25dc551eb0c736bf76e58fe1293ce143acffa6ee890f6d44504022c6b7166b6782d33d5010348e1d318121a0346facaf2bbe1fd5e7cc61f5fdd
SSDEEP

1536:IVeXBz803YBaB8TMEz8t8jWYCMNBvEKstOcnt3NrIOCFnToIfoth:dB/ft8CYCMNBMKstOqt3NdCtTBfoth

Score

N/A

Malware Config

Signatures

Files

3444c223866508d0bd3e1ff4d5ebedb5455202e1ec4744291707bb92814f18fa
.exe windows x86

d80d6d8dddacf861f17e8b450ce38ea3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
lstrcpyA
CloseHandle
WriteFile
SetFilePointer
CreateFileA
LockResource
LoadResource
GetModuleHandleA
FindResourceA
GetModuleFileNameA
GlobalFree
MoveFileExA
lstrcmpiA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetProcAddress
GetLastError
lstrcatA
SizeofResource
GlobalAlloc
RtlUnwind
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
SetStdHandle
MultiByteToWideChar
LCMapStringA
LCMapStringW
FlushFileBuffers

user32

wsprintfA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
ChangeServiceConfig2A

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d80d6d8dddacf861f17e8b450ce38ea3

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 16KB

.rsrc Size: 80KB - Virtual size: 76KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 16KB

.rsrc
Size: 80KB - Virtual size: 76KB