345b2e7ddc4ece9aa56220dc85996d561b4b8b94b9fe50509115b0159a5eabe6

Sharing

Copy URL Twitter E-mail

General

Target

345b2e7ddc4ece9aa56220dc85996d561b4b8b94b9fe50509115b0159a5eabe6
Size

158KB
MD5

81ac546a574d7f6e0735bad4294cfffe
SHA1

26a0c1d5df046e5119dfa4d3682e0e5494be02d0
SHA256

345b2e7ddc4ece9aa56220dc85996d561b4b8b94b9fe50509115b0159a5eabe6
SHA512

fb7fd82f272b67424571b62929c8bd479b23e7851081fcb2fe22a676caee9baded9491832c64490c898efb840a25e7e35bd8685fa5ac9b85eb13bab99c71bccb
SSDEEP

3072:FIo41oB9KrCO2b39dN9C7eL1a/uWB3RhRM7/vAtSOzNwai/L6mhLwqw:/bC7urQLztSOK7/

Score

N/A

Malware Config

Signatures

Files

345b2e7ddc4ece9aa56220dc85996d561b4b8b94b9fe50509115b0159a5eabe6
.exe windows x86

edddf9c8db0eefbc623d41395eb29b44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKeyState
UpdateWindow
SetWindowLongA
GetSystemMetrics
DrawTextA
CharNextA
GetClassInfoA
GetActiveWindow
CloseClipboard
DrawFrameControl
GetSysColor
GetMenuItemCount
GetSysColorBrush
RegisterClipboardFormatA
IsDialogMessageA
FindWindowA
TranslateMessage
LoadCursorA
LoadIconA
SetWindowsHookExA
IsWindowVisible
PostQuitMessage
GetMessageA
RemovePropA
SetMenu
WindowFromPoint
CallNextHookEx
GetIconInfo
GetCursorPos
GetDesktopWindow
GetFocus
SetScrollPos
UnhookWindowsHookEx

msvcrt

__p__environ
fflush
_cexit
fprintf
__p__fmode
fwrite
abort
_onexit
memcpy
_exit
_except_handler3
free
_adjust_fdiv
_XcptFilter
sprintf
_controlfp
__getmainargs
_initterm
__p___initenv
__set_app_type
__setusermatherr
__p__commode
_vsnprintf

kernel32

GlobalReAlloc
SetFilePointer
GetCurrentProcess
SetErrorMode
InterlockedIncrement
VirtualProtect
GetOEMCP
DeleteFileW
SetFileTime
GetStartupInfoA
IsBadCodePtr
CreateDirectoryA
GetLastError
InterlockedCompareExchange
GetModuleHandleW
GetUserDefaultLangID
GetModuleHandleA
GetTempPathW
FileTimeToLocalFileTime
DeviceIoControl
WideCharToMultiByte
lstrlenA
GetStdHandle

advapi32

InitiateSystemShutdownA
RegOpenKeyW
QueryServiceStatus
RegEnumKeyExA
RegCreateKeyExW
InitializeSecurityDescriptor
InitializeAcl
RegQueryValueExW
CryptAcquireContextA
RegOpenKeyExW
AllocateAndInitializeSid
AdjustTokenPrivileges
RegEnumValueA
RegCreateKeyExA
RegQueryValueExA
RegQueryInfoKeyA
RegEnumValueW
RegFlushKey
RegCloseKey
DeleteService
CryptReleaseContext
RegSetValueExW
ControlService
DeregisterEventSource
GetUserNameA

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

edddf9c8db0eefbc623d41395eb29b44

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

advapi32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 77KB - Virtual size: 76KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 38KB - Virtual size: 38KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 77KB - Virtual size: 76KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 38KB - Virtual size: 38KB