8b84d51155412e6bd65128760f71a9dc171632a3068d728d088d6419dabbc4b6

General

Target

8b84d51155412e6bd65128760f71a9dc171632a3068d728d088d6419dabbc4b6
Size

76KB
MD5

93800b3c1341ccb69db3e0ea7f150d80
SHA1

4fed1c0a5d7239f3ded2c2a1487de0ed22f7fcc4
SHA256

8b84d51155412e6bd65128760f71a9dc171632a3068d728d088d6419dabbc4b6
SHA512

ecc1773df88da683a8be0267ddc4023d1edb9622bef665ecad97aa1948531d7259e8fa0b918711461920ebfe87cde716dc0204df8d12c9a0370d74e070e4f0da
SSDEEP

1536:dWC/PK6JoNmJtjTQq4mVbB+p6pDru+WhujCrh0dZbL2llSnhWjimbXdsTufeKsIT:TtfpB+G1aCpLIe+dkMNMvI1

Score

N/A

Malware Config

Signatures

Files

8b84d51155412e6bd65128760f71a9dc171632a3068d728d088d6419dabbc4b6
.exe windows x86

4b31d57178af2621dc2c79622af31676

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetEnvironmentVariableA
GetCurrentThreadId
GetTickCount
MultiByteToWideChar
CreateDirectoryA
FindClose
FindFirstFileA
LeaveCriticalSection
EnterCriticalSection
GetLocalTime
GlobalUnlock
GlobalLock
LocalFree
LocalAlloc
LoadLibraryA
Sleep
CreateThread
InitializeCriticalSection
GetProcessTimes
GetCurrentProcess
FileTimeToSystemTime
MoveFileExA
GetFileSizeEx
FlushFileBuffers
WriteFile
SetFilePointer
GetComputerNameA
GetTempPathA
WaitForSingleObject
GetStartupInfoA
GetProcAddress
GetModuleHandleA
GetLastError
CreateFileA
GetFileSize
lstrlenA
CloseHandle

user32

TrackPopupMenu
IsWindowEnabled
EnableWindow
IsIconic
ShowWindow
ScreenToClient
BeginPaint
EndPaint
FindWindowA
DrawTextA
PeekMessageA
TranslateMessage
DispatchMessageA
DestroyMenu
LoadMenuA
CreateMenu

gdi32

MoveToEx
Ellipse
Polyline
SetTextColor
CreateHatchBrush
AngleArc

msvcrt

__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
_stricmp
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_adjust_fdiv
__CxxFrameHandler
free
memmove
rand
islower
fopen
fclose
fgets
_snprintf
srand
time
isalpha
_itoa
sprintf
??3@YAXPAX@Z
fwrite
??2@YAPAXI@Z
_access
strncpy
fread
atoi
strchr
strstr
_strnicmp
strrchr
__p___argv
__p___argc
__dllonexit

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b31d57178af2621dc2c79622af31676

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 16KB - Virtual size: 15KB