053e161906f340b6605bc9e7889238c40dc524c50bac4199adb86234244326ac

General

Target

053e161906f340b6605bc9e7889238c40dc524c50bac4199adb86234244326ac
Size

18KB
MD5

0c139b0d162326d8acef1d29a2b88670
SHA1

d09b157728aeaef63eaa64c7aa4bb7faf7e28381
SHA256

053e161906f340b6605bc9e7889238c40dc524c50bac4199adb86234244326ac
SHA512

1aac062b051fd22ef204eb86bda6d8e07f45c70345c73ea61bc44b21159c3a8750125d4ad9a029ef312e4ec84be78210548c1afd3b110bc0edac135672cf4ffe
SSDEEP

192:pWWN3OhAao7iFCEdRSwLwlYckb7LrmqBuG4svm4Ydk/HDr4On8bWMBcfhA+HU:pBObo+g8R1LGYck2+N72koQABc5E

Score

N/A

Malware Config

Signatures

Files

053e161906f340b6605bc9e7889238c40dc524c50bac4199adb86234244326ac
.exe windows x86

d647cfb2b9963f60cab5c52376e78d9f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CredFree

kernel32

GetCurrentThreadId
GetCommandLineW
OutputDebugStringW
CompareStringW
lstrcmpW
GetFullPathNameW
GetLastError
GetLongPathNameW
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
GlobalReAlloc
ReadFile
CreateDirectoryW
ExitProcess
HeapAlloc
FormatMessageW
InterlockedExchangeAdd
CreateEventA
QueryPerformanceCounter
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStartupInfoW
InterlockedExchange
LocalFree
InterlockedPushEntrySList
IsProcessorFeaturePresent
InterlockedPopEntrySList
DelayLoadFailureHook
InterlockedCompareExchange
GetProcessHeap
GetFileSize
FindClose
FindNextFileW
FindFirstFileW
lstrcmpiW
FlushInstructionCache
GetCurrentProcess
RaiseException
GlobalUnlock
GetTickCount
Sleep
AddAtomW
GetCurrentProcessId
GetFileTime
CreateFileW
UnmapViewOfFile
HeapSetInformation
SetErrorMode
VirtualQuery
GetModuleFileNameW
SetEndOfFile
GetSystemTimeAsFileTime

user32

GetMessageA
GetWindowTextW
LoadIconA
RegisterClassW

Sections

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d647cfb2b9963f60cab5c52376e78d9f

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.edata Size: 1KB - Virtual size: 1KB

.text Size: 10KB - Virtual size: 10KB

.rsrc Size: 5KB - Virtual size: 4KB

.edata
Size: 1KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 5KB - Virtual size: 4KB