a378cf78af89de66922cc325ad640b7723855b551e5abb8977203725a7dfb54d

Sharing

Copy URL

Twitter E-mail

General

Target

a378cf78af89de66922cc325ad640b7723855b551e5abb8977203725a7dfb54d
Size

216KB
MD5

4e5e6f9ad5b049c88cb7168434f91130
SHA1

0075d519539f0dd124b6ab52f919921b2331b177
SHA256

a378cf78af89de66922cc325ad640b7723855b551e5abb8977203725a7dfb54d
SHA512

7d0f0848ead7c0eb60efc5b3c71a1b7b638c25a52b77f3bcfe15220636ffcc61e2acb1cb79fedf364819b9030b3df27415fb5ee075a29ee2e7a72df26e231437
SSDEEP

3072:YfXOdo+GQu7grDTgG0Z5ICcF7utab9YzfPQywd9daKjG7btekh+Zv2+xeyK9:MOsd0rDTT0ZmLduPrYh9ab/+J7K9

Score

N/A

Malware Config

Signatures

Files

a378cf78af89de66922cc325ad640b7723855b551e5abb8977203725a7dfb54d
.exe windows x86

a2e86ad3740755e4498a614f874b5b47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
IsBadCodePtr
VirtualAlloc
WriteFile
VirtualFree
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetProcAddress
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
WideCharToMultiByte
lstrcpyA
lstrcatA
GetVersionExA
LocalAlloc
MulDiv
LocalFree
HeapReAlloc
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
GetStringTypeW

user32

GetMessageA
DispatchMessageA
TranslateMessage
KillTimer
SetTimer
DestroyWindow
PostQuitMessage
DefWindowProcA
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassA
UpdateWindow
ShowWindow
GetWindowLongA
SetWindowLongA
SystemParametersInfoA
wsprintfA

gdi32

GetDeviceCaps
GetStockObject
CreateDCA
ExtEscape
DeleteDC

advapi32

SetEntriesInAclA
AllocateAndInitializeSid
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
FreeSid
RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a2e86ad3740755e4498a614f874b5b47

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 10KB

.rsrc Size: 4KB - Virtual size: 2KB

.text Size: 168KB - Virtual size: 168KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 10KB

.rsrc
Size: 4KB - Virtual size: 2KB

.text
Size: 168KB - Virtual size: 168KB