b716424eed450c89dbc0f3a6cb1278e84cff8b373fff2c23e03e8a7bbd4d4db6

General

Target

b716424eed450c89dbc0f3a6cb1278e84cff8b373fff2c23e03e8a7bbd4d4db6
Size

344KB
MD5

a281d438937ea7c17d309cd8d64d55b0
SHA1

96e4b58546369e3b4f3c33fa24b98e58754a0dd3
SHA256

b716424eed450c89dbc0f3a6cb1278e84cff8b373fff2c23e03e8a7bbd4d4db6
SHA512

5f66c75df0a87bc2c7d40fd70f7d6302c6fb831028f50be0d73b4a44558782f0c549eedd4be2f80a6065b4c1531e2515ef42dbf57ec526f9659fd241dc5ded80
SSDEEP

6144:sPWFLMzMMRbdRPAXGFFgLTtyXxjTYniU16W/0l+p/cXpCOp8Jyae052kM:syMwE8XJTtgKim6W1ICDJDJ

Score

N/A

Malware Config

Signatures

Files

b716424eed450c89dbc0f3a6cb1278e84cff8b373fff2c23e03e8a7bbd4d4db6
.exe windows x86

c8f8472589ed8cee985be649c9bd19de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
ShowWindow
PostQuitMessage
GetMessageA
EndPaint
DrawTextA
DispatchMessageA
BeginPaint
TranslateMessage
CreateWindowExA
RegisterClassExA
DefWindowProcA
SendMessageA
LoadIconA
LoadCursorA
FillRect
DrawTextW
SetFocus
PostMessageA

kernel32

ExitProcess
CreateFileA
HeapAlloc
GetProcAddress
GetLastError
LoadLibraryA
GetModuleHandleA
GetVersion
GetStartupInfoA
TerminateProcess
UnhandledExceptionFilter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
SetHandleCount
GetVersionExA
GetEnvironmentVariableA
HeapDestroy
WriteFile
VirtualFree
HeapReAlloc
VirtualAlloc
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetStringTypeW
GetStringTypeA
GetCommandLineA
GetACP
GetCPInfo
GetModuleFileNameA
GetCurrentThreadId
GetStdHandle
GetOEMCP
GetFileType
MapViewOfFile
HeapFree
GetCurrentProcess
GetCurrentProcessId
CloseHandle
DeleteFileA
GetFileSize
HeapCreate
FormatMessageA
GetCurrentDirectoryA
RtlUnwind

gdi32

GetStockObject
CreatePen
CreateFontIndirectA
DeleteObject
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
LineTo
GetTextExtentPoint32W
MoveToEx
PatBlt

version

VerQueryValueA

Sections

.text
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8f8472589ed8cee985be649c9bd19de

Headers

File Characteristics

Imports

user32

kernel32

gdi32

version

Sections

.text Size: 285KB - Virtual size: 284KB

.rdata Size: 27KB - Virtual size: 26KB

.data Size: 18KB - Virtual size: 19KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 285KB - Virtual size: 284KB

.rdata
Size: 27KB - Virtual size: 26KB

.data
Size: 18KB - Virtual size: 19KB

.rsrc
Size: 13KB - Virtual size: 12KB