f85c936383337dbb753f26486835dbf67a1a9f594114c4c5d9b0e427911fdccb

Sharing

Copy URL Twitter E-mail

General

Target

f85c936383337dbb753f26486835dbf67a1a9f594114c4c5d9b0e427911fdccb
Size

131KB
MD5

82bfd94b99d02fd4b69d15485da073d2
SHA1

c027e680e124cdae22cc7c7fe749b1ed83faca6c
SHA256

f85c936383337dbb753f26486835dbf67a1a9f594114c4c5d9b0e427911fdccb
SHA512

931e05b0e19edcdee7c3013d0d76b3254c4f12838e30014679d82da5c76ee9de00c1131bd9c79b4b7088d32157d383ea18f202b285c365f2bbf055e0ee1a0366
SSDEEP

3072:Fi2zcAJeAmpePOapQU5D/EgAUWIP/C9oVi5d3/MTNa91fzOefV6fA:FLcAJBmpePOapQU1/E/bQ/FktiM9hies

Score

N/A

Malware Config

Signatures

Files

f85c936383337dbb753f26486835dbf67a1a9f594114c4c5d9b0e427911fdccb
.exe windows x86

346bad3cc40331ccf7bbe92839b48ae7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

TranslateMessage
CreateDialogParamW
EnableWindow
SetDlgItemTextW
SendDlgItemMessageW
DispatchMessageW
DestroyWindow
IsDialogMessageW
PeekMessageW
MessageBoxW
CharUpperW
IsCharAlphaNumericW
CharNextW
LoadStringW
wsprintfW

msvcrt

wcstoul
wscanf
wcsstr
_exit
wcstol
exit
_XcptFilter
_adjust_fdiv
wcschr
fgetwc
free
wcscpy
_wcsicmp
_iob
fwprintf
wprintf
_initterm
__p___winitenv
__wgetmainargs
__setusermatherr
_except_handler3
_controlfp
__p__commode
__set_app_type
__p__fmode
wcscat
wcslen
calloc

advapi32

RegUnLoadKeyW
AdjustTokenPrivileges
RegQueryValueExW
LookupPrivilegeValueW
RegSetValueExA
RegSetValueW
RegFlushKey
RegCreateKeyW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
OpenProcessToken
RegCloseKey
RegLoadKeyW
RegRestoreKeyW
RegSaveKeyW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegConnectRegistryW

kernel32

MultiByteToWideChar
WideCharToMultiByte
lstrcpyW
CreateFileW
GetFileSize
SearchPathW
SetFilePointer
OutputDebugStringW
ReadFile
lstrcmpW
LocalAlloc
CloseHandle
GetLastError
FormatMessageW
GetCurrentProcess
lstrlenW
LocalFree
WriteFile

shlwapi

StrChrW
StrToIntW

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�\�
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

346bad3cc40331ccf7bbe92839b48ae7

Headers

DLL Characteristics

File Characteristics

Imports

user32

msvcrt

advapi32

kernel32

shlwapi

Sections

.text Size: 24KB - Virtual size: 23KB

.data Size: 512B - Virtual size: 34KB

.rsrc Size: 22KB - Virtual size: 21KB

�\� Size: 82KB - Virtual size: 84KB

.text
Size: 24KB - Virtual size: 23KB

.data
Size: 512B - Virtual size: 34KB

.rsrc
Size: 22KB - Virtual size: 21KB

�\�
Size: 82KB - Virtual size: 84KB