66aa0c43b33236e0d29a088c9c7daf141ddc1361ed109531cc1a9de8bf576159

Sharing

Copy URL Twitter E-mail

General

Target

66aa0c43b33236e0d29a088c9c7daf141ddc1361ed109531cc1a9de8bf576159
Size

90KB
MD5

4303cdabeba38ee98bfaf1c4b1be5d80
SHA1

9ec3f0419ec0a92d15a6e36a6c116c8452d78acc
SHA256

66aa0c43b33236e0d29a088c9c7daf141ddc1361ed109531cc1a9de8bf576159
SHA512

011f0696f08d76e988a5e6a95fc3081b12e8aea319c9e77f160e6c4c1aef759aeebdc232efde2cdf98fc5169df8aec9bd537cf66e5587cca42b820ea1ba28ade
SSDEEP

1536:Vu51fOpB7dbiaIT2r3Edo5OphO10LGnLPY4nv1:VuXqhZlYdEO3O1D

Score

N/A

Malware Config

Signatures

Files

66aa0c43b33236e0d29a088c9c7daf141ddc1361ed109531cc1a9de8bf576159
.exe windows x86

5be50d8e9b42d791e4c1d4fe31391a8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFileInfoA
SHGetDesktopFolder

kernel32

HeapDestroy
lstrcpyA
Sleep
GetCurrentThreadId
GetDateFormatA
GetACP
lstrlenA
LoadLibraryExA
GetStringTypeA
CreateFileA
GetCurrentProcess
GlobalDeleteAtom
GetLastError
GetProcessHeap
GetOEMCP
GlobalAlloc
GetVersionExA
ExitProcess
GetCurrentProcessId
GetCommandLineA
ResetEvent
WideCharToMultiByte
GetProcAddress
CloseHandle
SetFilePointer
GetFullPathNameA
FormatMessageA
lstrcmpA
LocalReAlloc
lstrcpynA
GetCurrentThread
VirtualAlloc
LocalAlloc

user32

GetLastActivePopup
ShowWindow
GetActiveWindow
SetTimer
GetClipboardData
GetKeyState
BeginPaint
IsWindowEnabled
BeginDeferWindowPos
GetCursor
GetDCEx
GetMenu
EnumWindows
EnableWindow
CreateMenu
GetForegroundWindow
CheckMenuItem
FillRect
DrawEdge
GetCursorPos
EndPaint
GetMenuState
IsChild
GetWindow
GetFocus
CharToOemA
GetSubMenu
GetClassLongA
EnumChildWindows
SystemParametersInfoA
IsWindowVisible
GetCapture

Sections

CODE
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 209B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5be50d8e9b42d791e4c1d4fe31391a8a

Headers

File Characteristics

Imports

shell32

kernel32

user32

Sections

CODE Size: 8KB - Virtual size: 7KB

.data Size: 5KB - Virtual size: 28KB

.edata Size: 68KB - Virtual size: 67KB

BSS Size: 7KB - Virtual size: 6KB

.bss Size: 512B - Virtual size: 209B

.rsrc Size: 1024B - Virtual size: 571B

CODE
Size: 8KB - Virtual size: 7KB

.data
Size: 5KB - Virtual size: 28KB

.edata
Size: 68KB - Virtual size: 67KB

BSS
Size: 7KB - Virtual size: 6KB

.bss
Size: 512B - Virtual size: 209B

.rsrc
Size: 1024B - Virtual size: 571B