812ac1dd7d83574e5e0d6c28bac93939a1ff36fd05e4b97dcd7eaed2d2731b89

General

Target

812ac1dd7d83574e5e0d6c28bac93939a1ff36fd05e4b97dcd7eaed2d2731b89
Size

159KB
MD5

820e98c5b195c33fac94ee449b174d6e
SHA1

635db0642729271b523809e50e2f90649e96ed22
SHA256

812ac1dd7d83574e5e0d6c28bac93939a1ff36fd05e4b97dcd7eaed2d2731b89
SHA512

5dd4996636d3de5efe1aaf96b475d40dad390e76accb11945fd5b0e6fa35d1059f824c00c458d72bd3708ed353859c5f4eb1384564500540e72fa70266a49516
SSDEEP

3072:U6c0UnVnM8MDrV+74y2uihYGWOeBg/8nBBvHzMTEYdEeZk+F1jMLkkHmHykTm+:xu+eyYvvTwJ/xk

Score

N/A

Malware Config

Signatures

Files

812ac1dd7d83574e5e0d6c28bac93939a1ff36fd05e4b97dcd7eaed2d2731b89
.exe windows x86

4c77406fa4d1d5c5c36762645a80a394

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA
LoadCursorA
EnableWindow
GetDesktopWindow
UpdateWindow
RemovePropA
GetSysColor
DestroyIcon
EndDialog
GetSysColorBrush
OpenClipboard
GetCursorPos
EndPaint
GetSystemMetrics
DrawIcon
InvalidateRect
ShowWindow
GetScrollInfo
DeleteMenu
GetKeyState
ScrollWindow
SetScrollPos
LoadIconA
TranslateMessage
FindWindowA
ReleaseCapture
CloseClipboard

kernel32

lstrcpynA
GetCurrentProcess
GetDriveTypeA
OpenProcess
SetHandleCount
GetModuleHandleA
VirtualProtect
GetUserDefaultLangID
GetModuleHandleW
GlobalHandle
SystemTimeToFileTime
CopyFileA
CompareStringW
GetSystemDirectoryA
CreateFileMappingA
OutputDebugStringA
GetOEMCP
WaitForMultipleObjects
LocalAlloc
GetSystemDefaultLCID
GetSystemTimeAsFileTime

msvcrt

_controlfp
__p___initenv
_onexit
fwrite
__setusermatherr
_adjust_fdiv
strstr
_setmode
strchr
__p__fmode
malloc
__dllonexit
sprintf
_exit
__set_app_type
_write
abort
_XcptFilter
memcpy
fputc
fflush
realloc
_initterm
__p__commode
__getmainargs
atoi
_except_handler3
fclose
strrchr

advapi32

RevertToSelf
RegEnumValueW
RegCreateKeyExW
OpenServiceW
GetTokenInformation
QueryServiceStatus
RegDeleteValueA
RegFlushKey
RegQueryInfoKeyW
IsValidSid
CryptDestroyHash
AdjustTokenPrivileges
OpenThreadToken

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c77406fa4d1d5c5c36762645a80a394

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

advapi32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 77KB - Virtual size: 76KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 39KB - Virtual size: 39KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 77KB - Virtual size: 76KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 39KB - Virtual size: 39KB