3f0e33a9b014011d5bae157ead2d54f7c042f3dcbd68538b4fee516820eab369

General

Target

3f0e33a9b014011d5bae157ead2d54f7c042f3dcbd68538b4fee516820eab369
Size

116KB
MD5

b69f675b06d910040f0819635ba01125
SHA1

5312527547bd77e9661e82dd52d8a4f2857c487c
SHA256

3f0e33a9b014011d5bae157ead2d54f7c042f3dcbd68538b4fee516820eab369
SHA512

102992822fb883c03efb060a5bc5469078587a6b20413e89c428e6bc2c89a11068ebd8ed04da1d8a4a3744279baeda7a66c2293e77cc6908cba9f8a3f5c689a9
SSDEEP

1536:rzs4p+IY8S25PmCeTDYbPsTs7Z0e9VJbobMqqU+NV23S2mmDwZT:rE325PmCQcJjJbobMqqDLy/mT

Score

N/A

Malware Config

Signatures

Files

3f0e33a9b014011d5bae157ead2d54f7c042f3dcbd68538b4fee516820eab369
.exe windows x86

1a8545c455c99c3f3aeebcef19aeced1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
WriteFile
GetVersionExA
LoadLibraryA
GetWindowsDirectoryA
GetSystemDirectoryA
lstrcmpiA
CreateFileA
GetFileSize
GetLocalTime
GetModuleHandleA
GetVersion
GetEnvironmentStringsW
WideCharToMultiByte
VirtualAlloc
GetEnvironmentStrings
HeapAlloc
GetStringTypeW
GetStringTypeA
HeapReAlloc
GetStartupInfoA
GetCommandLineA
CloseHandle
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetACP
VirtualFree
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
HeapFree
RtlUnwind
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetCPInfo

user32

wsprintfA
MessageBoxA

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegEnumValueA
RegCloseKey
RegOpenKeyA
RegQueryValueExA

shell32

ShellExecuteA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_BSS
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a8545c455c99c3f3aeebcef19aeced1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

version

Sections

.text Size: 76KB - Virtual size: 73KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 20KB - Virtual size: 23KB

_BSS Size: 4KB - Virtual size: 4B

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 76KB - Virtual size: 73KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 20KB - Virtual size: 23KB

_BSS
Size: 4KB - Virtual size: 4B

.rsrc
Size: 8KB - Virtual size: 4KB