b6b02f382afc0045058c540f30cb274974acd500d2133911a8bdf9091f568237

General

Target

b6b02f382afc0045058c540f30cb274974acd500d2133911a8bdf9091f568237
Size

1005KB
MD5

71a78152ab5d70d35e8dba4e8d1d8828
SHA1

85ea592bba370eb8061072dd065559ca06de306e
SHA256

b6b02f382afc0045058c540f30cb274974acd500d2133911a8bdf9091f568237
SHA512

67085597175e3e775030b17ed9b64601b0953fd4100d7251e4f2a706bd0dff90eb8db6e2a68d583c2e49fbcfcd70f0e6d44f3e23c14fb73f28c654e6f6768580
SSDEEP

24576:JPK9pfPXwPP9j7QkUddXXA9oeB4yXcoe0:JGVPwPP9j7Qk+Xw9oV0

Score

N/A

Malware Config

Signatures

Files

b6b02f382afc0045058c540f30cb274974acd500d2133911a8bdf9091f568237
.exe windows x86

db25f59b2ff88647fd734e0791aa49ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
TrackMouseEvent
SetMenuItemInfoW
OpenInputDesktop
CopyRect

kernel32

GetProcAddress
WaitForSingleObject
ActivateActCtx
CreateActCtxA
CreateThread
ExitProcess
GetCurrentDirectoryA
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetSystemTime
LoadLibraryA
Sleep
VirtualAlloc
VirtualFree
VirtualProtect
TerminateThread
GetFileAttributesW

gdi32

SetBkColor
CreateRectRgnIndirect
GetViewportOrgEx
SelectObject

ntdll

NtQueryInformationProcess

msvcrt

_itow
_except_handler3
free
memmove
_vsnwprintf

shell32

SHGetDesktopFolder
SHAddToRecentDocs
SHGetFolderPathW
SHGetSpecialFolderLocation

uxtheme

GetThemeBackgroundContentRect
GetThemeRect
GetThemeTextExtent
GetThemeBackgroundRegion
SetWindowTheme

ole32

CoFreeUnusedLibraries
CoRegisterClassObject

shlwapi

StrCmpW
PathFindFileNameW
PathQuoteSpacesW

advapi32

RegNotifyChangeKeyValue
RegCreateKeyExW
RegSetValueW

Sections

.text
Size: 936KB - Virtual size: 935KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

db25f59b2ff88647fd734e0791aa49ce

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ntdll

msvcrt

shell32

uxtheme

ole32

shlwapi

advapi32

Sections

.text Size: 936KB - Virtual size: 935KB

.rdata Size: 2KB - Virtual size: 1KB

.bss Size: - Virtual size: 3KB

.data Size: 66KB - Virtual size: 66KB

.text
Size: 936KB - Virtual size: 935KB

.rdata
Size: 2KB - Virtual size: 1KB

.bss
Size: - Virtual size: 3KB

.data
Size: 66KB - Virtual size: 66KB