ecee812b5b3331499a276aa756e6ae468e68613e8db57c903122b3717cdb61cf

General

Target

ecee812b5b3331499a276aa756e6ae468e68613e8db57c903122b3717cdb61cf
Size

96KB
MD5

0d4aff8198ea5a649f2337514f259ac0
SHA1

650802802fd3bebc03f7fe45ec639ef596fd4247
SHA256

ecee812b5b3331499a276aa756e6ae468e68613e8db57c903122b3717cdb61cf
SHA512

aeb1d96898e7fd80bf012d0208bb0943e2347fa68436c4e08c21c018f94ab1cce965ac4ba2230c0eabc1e2a8861d84549249a63431537537338bf8a31a28ff66
SSDEEP

1536:nhc7zscICJOaVFlt2vHw2DhqN93xMxq0xEGz0NKwBg:nhA4cIFaVFl2wbxMxlEGeKwB

Score

N/A

Malware Config

Signatures

Files

ecee812b5b3331499a276aa756e6ae468e68613e8db57c903122b3717cdb61cf
.exe windows x86

a88b4c30bf4939da458f75ced07b94cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
LeaveCriticalSection
EnterCriticalSection
WriteFile
CloseHandle
ReadFile
GetFileSize
CreateFileA
GetVolumeInformationA
GetProcAddress
FreeLibrary
LoadLibraryA
DeleteFileA
ReleaseMutex
WideCharToMultiByte
WaitNamedPipeA
GetLastError
CreateMutexA
GetSystemDirectoryA
GetTempPathA
InitializeCriticalSection
DeleteCriticalSection
SuspendThread
WinExec
ResumeThread
MoveFileExA
CreateThread
GetStartupInfoA
GetModuleHandleA
lstrlenA
Sleep
MultiByteToWideChar
WaitForSingleObject
GetPrivateProfileStringA

user32

CharLowerA
SystemParametersInfoA
CharUpperA
ShowWindow
SendMessageA
SetCursorPos
ClientToScreen
FindWindowExA
RegisterWindowMessageA
SendMessageTimeoutA
FindWindowA
GetWindowThreadProcessId
mouse_event
SetForegroundWindow

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SysAllocStringLen
SysStringLen
SysFreeString
VariantClear

msvcrt

strncpy
_stricmp
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
localtime
strncmp
strstr
free
sprintf
atoi
malloc
__CxxFrameHandler
rand
wcscmp
_strlwr
srand
time

netapi32

Netbios

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a88b4c30bf4939da458f75ced07b94cd

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

msvcrt

netapi32

Sections

.text Size: 84KB - Virtual size: 81KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 5KB

.text
Size: 84KB - Virtual size: 81KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 5KB