904d64815ac9d0b0b8d01e160467f6b5eb9678c82867f7f0be7c0ac28fcc21f0

General

Target

904d64815ac9d0b0b8d01e160467f6b5eb9678c82867f7f0be7c0ac28fcc21f0
Size

160KB
MD5

85084ff44e29b0c13aa8b500c431eb10
SHA1

2f47c1f1613347cf210ba720674749a3fa2807db
SHA256

904d64815ac9d0b0b8d01e160467f6b5eb9678c82867f7f0be7c0ac28fcc21f0
SHA512

1ee3ed226e4eedf0cdeb5fae387b440d5063c59e3729913a5f4b05b21e35af34aff5949cfd05a13d32d78c98600f68bb617de2f60112ed5b55398adf387e7603
SSDEEP

3072:s95Z/8N4kyyY5J3UoFVwZIqXwg1Lhl0CxM/1Aof9wyymN9B:9ZIhg1LhmCqd7f9wM

Score

N/A

Malware Config

Signatures

Files

904d64815ac9d0b0b8d01e160467f6b5eb9678c82867f7f0be7c0ac28fcc21f0
.exe windows x86

195ac087d1c8a7d2c2e4a3130622023f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKeyState
UpdateWindow
GetMessagePos
EnableMenuItem
GetSysColorBrush
DestroyWindow
LoadCursorA
SetTimer
RegisterClassA
ScreenToClient
IntersectRect
WinHelpA
EndDialog
GetDesktopWindow
GetSystemMetrics
GetMenuState
LoadIconA
CreateMenu
GetCursorPos
FindWindowA
GetMenuItemCount
GetActiveWindow
GetSysColor

kernel32

GetSystemDirectoryA
CompareFileTime
SetFilePointer
FreeEnvironmentStringsW
GetUserDefaultLangID
GetConsoleMode
RtlUnwind
CreateFileMappingA
IsBadWritePtr
SetUnhandledExceptionFilter
SetThreadLocale
GetFileAttributesA
SetLastError
GetDiskFreeSpaceA
FileTimeToSystemTime
GetCurrentProcess
GetModuleHandleW
GetModuleHandleA
OutputDebugStringA
VirtualProtect
GetCurrentDirectoryA
InterlockedCompareExchange
GetLocaleInfoA
LocalFree

msvcrt

memcpy
_exit
sprintf
_initterm
signal
exit
__set_app_type
__setusermatherr
_controlfp
_adjust_fdiv
_setmode
_errno
_except_handler3
__p___initenv
_XcptFilter
fwrite
getenv
_write
__p__commode
__getmainargs
__p__environ
_onexit
__p__fmode
_cexit
malloc
free
memmove

advapi32

AddAccessAllowedAce
RevertToSelf
CryptDestroyHash
RegSetValueExW
RegCloseKey
GetUserNameA
SetSecurityDescriptorGroup
CheckTokenMembership
RegQueryValueA
RegQueryValueExW
DeregisterEventSource
CryptGenRandom
OpenServiceA
RegOpenKeyW
EqualSid
OpenThreadToken

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

195ac087d1c8a7d2c2e4a3130622023f

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

advapi32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 77KB - Virtual size: 76KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 40KB - Virtual size: 108KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 77KB - Virtual size: 76KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 40KB - Virtual size: 108KB