83961513ee99610962dced5a28a8bd724f93893228f7a3d4f1757960006922ca

General

Target

83961513ee99610962dced5a28a8bd724f93893228f7a3d4f1757960006922ca
Size

250KB
MD5

0380aeaf2d376e719369152ffa239c50
SHA1

9c97c146132ed41257f992869bbd4f4341ae2b67
SHA256

83961513ee99610962dced5a28a8bd724f93893228f7a3d4f1757960006922ca
SHA512

44cbbffee771fc4d56ffb88e327547e28ea621595cbd2a157e6565e1b0bfe87fa6143924899b91f8d42808b9e6217e2b4fcf709e3db2275a8c6a271cec01d8d6
SSDEEP

6144:siqwyB6pA3HFoM8X7j6XUiZqSb5snRK0:scyBU1f6RsusRh

Score

N/A

Malware Config

Signatures

Files

83961513ee99610962dced5a28a8bd724f93893228f7a3d4f1757960006922ca
.exe windows x86

d352c49ea1c0ae7ff3c5f446de4454cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

TlsGetValue
CloseHandle
InitializeCriticalSection
SetEvent
IsDBCSLeadByteEx
VirtualAlloc
VirtualFree
LeaveCriticalSection
InterlockedIncrement
GetModuleHandleA
LoadLibraryA
GetACP
VirtualQuery
GetProcAddress
DeleteCriticalSection
CreateEventA
IsValidCodePage
MultiByteToWideChar
GetLastError
InterlockedDecrement
FreeLibrary
GetThreadLocale
InterlockedExchange
ExitProcess
EnterCriticalSection

msvcrt

strncpy
memcpy
strlen
localeconv
fgets
strncmp
strtoul
bsearch
_isctype
wcschr
_iob
fflush
strcpy
fputwc
strstr
vsprintf
fclose
memmove
tolower
strcspn
abort
wcslen
fwrite
_vsnprintf
realloc
fputc
strchr
sprintf
__dllonexit
strcmp
putc
__p__commode
_errno
getenv
setlocale
qsort
atoi

advapi32

EqualPrefixSid
RegNotifyChangeKeyValue
RegGetKeySecurity
RegCloseKey
SystemFunction006
CreatePrivateObjectSecurityEx
RegOpenKeyExA

Sections

.text
Size: 124KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d352c49ea1c0ae7ff3c5f446de4454cf

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

Sections

.text Size: 124KB - Virtual size: 128KB

.data Size: 70KB - Virtual size: 70KB

.rdata Size: 12KB - Virtual size: 11KB

.bss Size: - Virtual size: 4KB

.idata Size: 21KB - Virtual size: 20KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 124KB - Virtual size: 128KB

.data
Size: 70KB - Virtual size: 70KB

.rdata
Size: 12KB - Virtual size: 11KB

.bss
Size: - Virtual size: 4KB

.idata
Size: 21KB - Virtual size: 20KB

.rsrc
Size: 21KB - Virtual size: 20KB