84258c660aba8eb1021f9acade24b0063015feb05ed53328981c662342b9d64c

General

Target

84258c660aba8eb1021f9acade24b0063015feb05ed53328981c662342b9d64c
Size

107KB
MD5

91041a5c2598613c6adf6f488a064390
SHA1

294c449d403c3c9c17808a7d99e921813817f8ef
SHA256

84258c660aba8eb1021f9acade24b0063015feb05ed53328981c662342b9d64c
SHA512

d0d3262bbe24fa172d4ec668688bb3b4bd91f750a598c664d95b5d99fb64465c9ba536d8809f5ed4ecc62a70a065583a627b06c81cc01b41b5d22a0bb235b4d0
SSDEEP

1536:pboQ2IWeF0r2AFgZ3NdtMmmhKsZ2aMwK+yKoc5W1IauHtBcMqhxNjpIwRb7j8l:5b2GcgptoKszK+yA5WvuPqhxNjywRf8

Score

N/A

Malware Config

Signatures

Files

84258c660aba8eb1021f9acade24b0063015feb05ed53328981c662342b9d64c
.exe windows x86

c7661c23ecfa895a4836f4d6117379d7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetFileAttributesW
CreateProcessW
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
InterlockedCompareExchange
Sleep
InterlockedExchange
GetCurrentThreadId

user32

MessageBoxW

advapi32

RegQueryValueExW
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW

msvcr80

_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_wcmdln
__p__commode
__p__fmode
_encode_pointer
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
exit
_XcptFilter
_exit
_cexit
__wgetmainargs
_amsg_exit
??3@YAXPAX@Z
_wcsicmp
??2@YAPAXI@Z
wcscpy_s
wcscat_s
_adjust_fdiv
memset

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c7661c23ecfa895a4836f4d6117379d7

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcr80

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 92KB - Virtual size: 92KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 92KB - Virtual size: 92KB