b021a17058f72a6be1fe2a28615f41e47af11b4edf0b5fb9c9504da9e0e39132

General

Target

b021a17058f72a6be1fe2a28615f41e47af11b4edf0b5fb9c9504da9e0e39132
Size

507KB
MD5

804014af0506f885151ad50cf3709ba0
SHA1

bfb2636f93efbdad723bd3425e10b0d38f1e98a0
SHA256

b021a17058f72a6be1fe2a28615f41e47af11b4edf0b5fb9c9504da9e0e39132
SHA512

e956db4cd16bd199e2faf7b6c9153eb0c9d44ab26f326bd93e819a919b358e94c60dc0e46c5d20bc6360f84ae35f1c991caebcabb804ba42916d3f34857d5566
SSDEEP

12288:MLu+dCXvJ55555ZLAvUNiLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLk:kdCR55555ddZVi0ZG96r

Score

N/A

Malware Config

Signatures

Files

b021a17058f72a6be1fe2a28615f41e47af11b4edf0b5fb9c9504da9e0e39132
.exe windows x86

027a18002c28b469a75afdbeaec8a2bb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetFocus
SetCursorPos
IsWindow
PostMessageA
GetMessageA
GetWindowTextA
DispatchMessageA
wsprintfA
LoadCursorA
IsCharLowerW
GetWindowLongA

cabinet

FCICreate
FDIIsCabinet

kernel32

lstrcpynA
FormatMessageA
GetTickCount
GetCurrentDirectoryA
InterlockedDecrement
SetStdHandle
CreateMutexA
GetDriveTypeA
SetCurrentDirectoryA
EncodePointer
CompareStringA
GetProcessHeap
GetLogicalDrives
GetStdHandle
GetEnvironmentVariableA
VirtualQuery
lstrcmpiA
GetDiskFreeSpaceA
lstrcmpA
SetFileAttributesA
GetConsoleTitleA
GetBinaryTypeA
SetVolumeLabelA
GetModuleHandleA
GetSystemInfo
TlsGetValue
GetFullPathNameA
GetProcAddress
CloseHandle
HeapValidate
QueryDosDeviceA
GetComputerNameW
CreateSemaphoreA
CreateEventW
GetShortPathNameA
GetVersionExA
CopyFileA
PurgeComm
InterlockedExchange
GetCurrentThread
ReplaceFileW
CreateNamedPipeA
GetProcessTimes
FileTimeToLocalFileTime

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 456KB - Virtual size: 504KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

027a18002c28b469a75afdbeaec8a2bb

Headers

DLL Characteristics

File Characteristics

Imports

user32

cabinet

kernel32

Sections

.text Size: 41KB - Virtual size: 41KB

.data Size: 3KB - Virtual size: 12KB

.rsrc Size: 456KB - Virtual size: 504KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 41KB - Virtual size: 41KB

.data
Size: 3KB - Virtual size: 12KB

.rsrc
Size: 456KB - Virtual size: 504KB

.reloc
Size: 6KB - Virtual size: 5KB