4e0e5f1f0b2b1fabde7778a313dc819b25576086ba771379003e8b0f0ececdba

General

Target

4e0e5f1f0b2b1fabde7778a313dc819b25576086ba771379003e8b0f0ececdba
Size

111KB
MD5

a29fd1b0a40a39be5fb819a8e17e9450
SHA1

b9e36d909346200e72752d00c3ed1a7848ad55dc
SHA256

4e0e5f1f0b2b1fabde7778a313dc819b25576086ba771379003e8b0f0ececdba
SHA512

591ed8b3b57708b2ad3395f8dcbfb2ca702796ded2fcc5c9dab97c1a662d4e123fc2e51f8354730e2cf4c83aa1d2cb5f0ce76549512e25b4e4af5065195925f2
SSDEEP

3072:y3V7DnraT/2pYrvISFqVFMHtmBQz9mBoBeOGJ7aOyEw+M:AV7DnraT/2pYzWVF0tmoNBe9vw+M

Score

N/A

Malware Config

Signatures

Files

4e0e5f1f0b2b1fabde7778a313dc819b25576086ba771379003e8b0f0ececdba
.exe windows x86

16aac838c9b78448a2ccb3b36189d2b4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

realloc
malloc
_onexit
__dllonexit
_controlfp
??1type_info@@UAE@XZ
_except_handler3
__set_app_type
__p__fmode
__setusermatherr
_initterm
__wgetmainargs
__p___winitenv
_XcptFilter
_exit
fprintf
_wcsicmp
??2@YAPAXI@Z
_ltow
free
_purecall
exit
_CxxThrowException
_EH_prolog
__CxxFrameHandler
_iob
__p__commode
fwprintf
_adjust_fdiv
??3@YAXPAX@Z

advapi32

RegDeleteValueW
RegCloseKey
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegOpenKeyExW
RegEnumValueW

kernel32

GetModuleHandleW
lstrlenA
HeapReAlloc
DeleteCriticalSection
LoadLibraryExW
EnterCriticalSection
InitializeCriticalSection
VirtualFree
MultiByteToWideChar
SetLastError
WideCharToMultiByte
GetVersionExA
GetLastError
DeleteFileW
MoveFileW
FreeLibrary
LoadLibraryW
GetProcAddress
lstrcmpW
GetFullPathNameW
lstrlenW
SetCurrentDirectoryW
HeapFree
LeaveCriticalSection
GetProcessHeap
GetModuleFileNameW

user32

LoadStringW

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

16aac838c9b78448a2ccb3b36189d2b4

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

user32

Sections

.text Size: 23KB - Virtual size: 22KB

.data Size: 512B - Virtual size: 5KB

.rsrc Size: 84KB - Virtual size: 84KB

.text
Size: 23KB - Virtual size: 22KB

.data
Size: 512B - Virtual size: 5KB

.rsrc
Size: 84KB - Virtual size: 84KB