87159b1ee4e908c4ace2d808e5d13db40aebbac3c8dbf0a95b973468fd8aa368

General

Target

87159b1ee4e908c4ace2d808e5d13db40aebbac3c8dbf0a95b973468fd8aa368
Size

181KB
MD5

0c838bee83f95e00f2e8719901ea9860
SHA1

936067e31ccbcadd52b8a95f2b5e2bc193afa8a8
SHA256

87159b1ee4e908c4ace2d808e5d13db40aebbac3c8dbf0a95b973468fd8aa368
SHA512

1dc14de6ae08ba4820d9102f9a3e7088e289ffee1cf89f2eb229e3ca98cf6c5c343c486738782888c5f6777810687d133b7acb02b1e4bcc2f0e6dd3927a4882e
SSDEEP

3072:2WXw3WNR6msXY0sCezfv4tPDIxWCXQ0laW7jLlENTrybXAZWNtY1VlbAKhINUXUP:iFG7jeSwZuY1VlbAFUX

Score

N/A

Malware Config

Signatures

Files

87159b1ee4e908c4ace2d808e5d13db40aebbac3c8dbf0a95b973468fd8aa368
.exe windows x86

3a5c298460c792f619a7430a33f26c9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorA
OemToCharA
GetKeyState
FindWindowA
SetScrollInfo
SetWindowTextA
LoadIconA
GetClassNameA
GetMenuStringA
UpdateWindow
KillTimer
GetCapture
CallNextHookEx
SetWindowPlacement
GetSysColorBrush
GetSystemMetrics
IsWindow
LoadStringA
GetCursorPos
GetDlgItem
GetSysColor
GetDesktopWindow
CreateMenu

msvcrt

__set_app_type
fread
_except_handler3
fputs
strncpy
__p___initenv
wcslen
_initterm
abort
__p__fmode
__getmainargs
_iob
strrchr
__setusermatherr
free
sprintf
memset
_stricmp
_XcptFilter
__p__commode
_exit
fputc
_controlfp
memcpy
_adjust_fdiv
calloc
_errno

kernel32

GlobalReAlloc
InterlockedDecrement
VirtualProtect
GetUserDefaultLangID
SetEnvironmentVariableA
GetFileAttributesW
IsBadCodePtr
SetUnhandledExceptionFilter
CreateFileMappingA
GetLocaleInfoA
DeleteFileW
GetModuleFileNameA
GetUserDefaultLCID
GetLocalTime
FileTimeToSystemTime
FreeEnvironmentStringsA
QueryPerformanceCounter
GetLastError
OutputDebugStringA
RtlUnwind
GetModuleHandleW
CompareStringW
GetModuleHandleA
GetCurrentProcess
SetErrorMode

advapi32

CryptReleaseContext
LookupPrivilegeValueA
RegCloseKey
SetSecurityDescriptorDacl
RegOpenKeyExA
SetSecurityDescriptorGroup
CryptDestroyHash
RegOpenKeyW
RegEnumKeyW
RegFlushKey
OpenProcessToken
FreeSid
InitiateSystemShutdownA
RegCreateKeyExW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a5c298460c792f619a7430a33f26c9e

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

advapi32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 92KB - Virtual size: 92KB

.data Size: 33KB - Virtual size: 33KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 92KB - Virtual size: 92KB

.data
Size: 33KB - Virtual size: 33KB

.rsrc
Size: 40KB - Virtual size: 39KB