f9cfb92322e30e5982481a0b577a2205b8aaa9cafddf0ee2c4f232faa9e6f82e

General

Target

f9cfb92322e30e5982481a0b577a2205b8aaa9cafddf0ee2c4f232faa9e6f82e
Size

396KB
MD5

4cbc3583b75b33a98137541b3d1e4fd3
SHA1

8e6ff691c2d33566e2c03257f0e9838744535960
SHA256

f9cfb92322e30e5982481a0b577a2205b8aaa9cafddf0ee2c4f232faa9e6f82e
SHA512

2368fccac42d052cdebcb6e4ae9245d148a084448bd432b75a619f87d8df445d0d4f4e9c70c96296c4cfc3a972556084cdd80890392da1d659c0636df2d0608a
SSDEEP

6144:aUwakbqTa5ONueDvUEMAGx2sY8/XT52h8TY0Jgy/V0A/Tib4XxEVYs49nignamAX:a6kGNuAsA62sY8/X80ay/6VYX9ixX/v

Score

N/A

Malware Config

Signatures

Files

f9cfb92322e30e5982481a0b577a2205b8aaa9cafddf0ee2c4f232faa9e6f82e
.exe windows x86

afbdb05612555237f692fef6bebce8ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SearchPathW
GetWindowsDirectoryW
GetStringTypeExW
CreateFileW
GetPrivateProfileIntW
lstrcmpiW
lstrcmpW
GetModuleHandleW
CreateThread
GetExitCodeThread
lstrcpyW
OutputDebugStringW
lstrlenW
SetCurrentDirectoryW
FreeLibrary
DisableThreadLibraryCalls
GetVersionExW
CreateFileMappingW
UnmapViewOfFile
lstrcpynW
GetModuleHandleA
IsBadReadPtr
LocalAlloc
GetFileAttributesW
VerifyVersionInfoW
SetLastError
Sleep
GetThreadLocale
CompareStringA
HeapValidate
GetProcessHeap
GetSystemDirectoryW
HeapAlloc
HeapSize
HeapFree
GetSystemTimeAsFileTime
ReadFile
SetConsoleMode
GetStdHandle
InitializeCriticalSection
DeleteCriticalSection
GetTickCount
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
OutputDebugStringA
WritePrivateProfileSectionW
FreeLibraryAndExitThread
GetStartupInfoA
lstrlenA
WriteFile
GetLastError
QueryPerformanceCounter
CloseHandle

user32

wsprintfW
GetClientRect
wsprintfA
SetRectEmpty
ClientToScreen
OffsetRect
WindowFromDC
IntersectRect
GetActiveWindow
SetWindowsHookExA
GetFocus
SetDlgItemTextW
CallNextHookEx
OpenIcon
FindWindowW
IsWindowVisible
SetWindowLongW
GetWindowLongW
CharNextW
LoadStringW
EnableWindow
SetWindowTextA
ShowWindow
GetDlgItem
SetFocus
WinHelpW
UnhookWindowsHookEx
GetDlgItemTextW

advapi32

RegCloseKey
IsTextUnicode
RegSetValueW
RegOpenKeyW
RegQueryValueExW
RegSetValueA
RegSetValueExW

oleaut32

LoadRegTypeLi
SysFreeString
SysAllocString
SysAllocStringLen
SysStringLen

msvcrt

strlen
wcschr
memmove
free
printf

Sections

.text
Size: 344KB - Virtual size: 342KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.INIT
Size: 4KB - Virtual size: 677B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 44KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

afbdb05612555237f692fef6bebce8ba

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

msvcrt

Sections

.text Size: 344KB - Virtual size: 342KB

.INIT Size: 4KB - Virtual size: 677B

.data Size: 44KB - Virtual size: 51KB

.text
Size: 344KB - Virtual size: 342KB

.INIT
Size: 4KB - Virtual size: 677B

.data
Size: 44KB - Virtual size: 51KB