794c6d3f1d1b7dc49f96d438a1e0e4f3ebbfdc7f74590c7684ac9310cbfc81e3

General

Target

794c6d3f1d1b7dc49f96d438a1e0e4f3ebbfdc7f74590c7684ac9310cbfc81e3
Size

859KB
MD5

47b10c9937153133a3b3dcd422c5a160
SHA1

b4f89491f6b51b501006bb619bc5e0db0220c634
SHA256

794c6d3f1d1b7dc49f96d438a1e0e4f3ebbfdc7f74590c7684ac9310cbfc81e3
SHA512

038bd26c35b2dd641d417cbb3fa536577ff44637b77a1ae78a8b0393fd1982ee439e24ff2798e2be48e404b37945a5b673ebb6cea5cf09f68fcdccfc6ebe1cf9
SSDEEP

12288:zau5NNZxZHGOHeI+Jybmpt8xTkvIBJaESLrWXuBtduBtduBtduBt:zauxZmA/+ImE+vQJ6WMyyy

Score

N/A

Malware Config

Signatures

Files

794c6d3f1d1b7dc49f96d438a1e0e4f3ebbfdc7f74590c7684ac9310cbfc81e3
.exe windows x86

ae648bc53d0b2ee79b1d43fecd21bf45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedDecrement
VirtualAlloc
GetThreadTimes
GetProcessId
GetCurrentThread
GetCurrentThreadId
FindFirstFileA
GetFileSize
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetProcAddress
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
IsBadWritePtr
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedIncrement
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException
LocalFree
lstrlenA
HeapAlloc
GetVersionExA
Sleep

user32

GetWindowInfo
GetWindowTextLengthA
IsWindowUnicode
GetWindow
CreateWindowExA
UpdateWindow
DefWindowProcA
PostQuitMessage
IsIconic
RegisterClassA

oleaut32

SysAllocString
SysFreeString
VariantClear

advapi32

RegCloseKey
RegOpenKeyExA

ws2_32

WSAHtons
WSAGetLastError
WSACleanup
WSACancelAsyncRequest

Sections

.text
Size: 840KB - Virtual size: 840KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ae648bc53d0b2ee79b1d43fecd21bf45

Headers

File Characteristics

Imports

kernel32

user32

oleaut32

advapi32

ws2_32

Sections

.text Size: 840KB - Virtual size: 840KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 15KB

.text
Size: 840KB - Virtual size: 840KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 15KB