9ddf19ad00300a8e8bda4a4795ed90e2d621c9ee53a07ede86bde2dc848bc8fc

General

Target

9ddf19ad00300a8e8bda4a4795ed90e2d621c9ee53a07ede86bde2dc848bc8fc
Size

106KB
MD5

0ba5fc0e1a33bbe90a9d4a124958a771
SHA1

021432a4c662081041ba7895b5e99ca2e1839111
SHA256

9ddf19ad00300a8e8bda4a4795ed90e2d621c9ee53a07ede86bde2dc848bc8fc
SHA512

b2133ecf79370fe107dad9f4a9517f20303afcbef8395c3142f3de336ac7d9f8fd3b95c4e458ce259341afeeec946ffeccd9b427edd90fe43c1340c2cbb963e4
SSDEEP

3072:0DfUDi/Ph8g1aQX4euHOvUtVJyaT0y3Ku6hT/6Gl:Gq4Ph8gDIztVJdD32RBl

Score

N/A

Malware Config

Signatures

Files

9ddf19ad00300a8e8bda4a4795ed90e2d621c9ee53a07ede86bde2dc848bc8fc
.exe windows x86

877f5de6041f891874ed2462091369a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
_initterm
fwrite
_wtol
__set_app_type
towlower
_adjust_fdiv
_XcptFilter
wcstombs
__p__fmode
wcscspn
_onexit
_except_handler3
_fileno
__getmainargs
__setusermatherr
_acmdln
bsearch
ceil
sqrt
_exit
strchr
__p__commode
exit
__pioinfo

kernel32

InterlockedIncrement
IsBadReadPtr
GlobalLock
GlobalReAlloc
IsValidCodePage
lstrcpynA
GetModuleHandleA
lstrcmpiA
OutputDebugStringA
GetStartupInfoA
IsBadCodePtr
GetSystemDirectoryW
GetFileAttributesW
GetTickCount
SetFileAttributesA
InterlockedDecrement
GetEnvironmentVariableA
VirtualProtect

user32

EnumWindows
GetSysColorBrush
SetClipboardData
UnregisterClassA
FillRect
GetDlgItem
GetWindowThreadProcessId
UnhookWindowsHookEx
DefWindowProcA
GetWindowRect
GetClientRect
ScrollWindow
IsDialogMessageA
RemoveMenu
PostMessageA
GetDCEx
EmptyClipboard
EnableWindow
InsertMenuItemA
SetWindowPos

oleaut32

GetErrorInfo
SafeArrayCreate
SafeArrayGetElement
LoadTypeLib
SysFreeString
SafeArrayUnaccessData
VariantCopy
VariantInit

advapi32

SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
RegCreateKeyExW
RegDeleteKeyW
RegCreateKeyA
RegQueryInfoKeyA
OpenProcessToken
CloseServiceHandle
QueryServiceStatus
AddAccessAllowedAce
RegQueryInfoKeyW
RegOpenKeyA

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

877f5de6041f891874ed2462091369a8

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

oleaut32

advapi32

Sections

.text Size: 57KB - Virtual size: 57KB

.data Size: 17KB - Virtual size: 16KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 57KB - Virtual size: 57KB

.data
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 31KB - Virtual size: 30KB