1ba330b041ad465ecbe155c472a7774484c9e0df4cc8928286e20098b24544e6

Sharing

Copy URL Twitter E-mail

General

Target

1ba330b041ad465ecbe155c472a7774484c9e0df4cc8928286e20098b24544e6
Size

326KB
MD5

3b092bef99e4f5e9fdf787313d1670a1
SHA1

f1d65debaf55ac1919315c83ad16dfe8f014c261
SHA256

1ba330b041ad465ecbe155c472a7774484c9e0df4cc8928286e20098b24544e6
SHA512

61110de0a8226fbdd9bbf21a53d311407fada569a2bdb78aec5a937a831a2b5f683290f41c1dbfeb336ecb12cb604c50895bdd033cd504b77fe18e0d21589daa
SSDEEP

6144:GskaUZoSxJo1cz6B0DA+4iWqm2EiI0PoWeq8GTA4hqhitPu2Sz:3LcmUAdiW92C0QWe9qh2i02

Score

N/A

Malware Config

Signatures

Files

1ba330b041ad465ecbe155c472a7774484c9e0df4cc8928286e20098b24544e6
.exe windows x86

8aeac11eba70525f9cac1c455d55dd41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ContinueDebugEvent
FatalAppExitA
SetUnhandledExceptionFilter
WritePrivateProfileStringA
SetTimeZoneInformation
EnumLanguageGroupLocalesA
GlobalGetAtomNameA
GetCommProperties
OutputDebugStringW
SetThreadPriority
GetVolumeNameForVolumeMountPointW
GetEnvironmentVariableA
GetStringTypeW
EnumDateFormatsExW
RtlZeroMemory
GlobalAddAtomW
SetCalendarInfoW
OutputDebugStringA
LCMapStringW
SetVolumeLabelA
GetPrivateProfileStructA
GetWindowsDirectoryW
GetStartupInfoW
ProcessIdToSessionId
GetAtomNameW
_hwrite
SetMessageWaitingIndicator
IsBadHugeWritePtr
InterlockedExchangeAdd
ExpandEnvironmentStringsW
GetCommMask
SetLastError
RtlUnwind
GetCPInfo
FindFirstFileExA
Process32First
GetProfileStringW
LocalCompact
CompareStringA

user32

ShowWindow
GetClassInfoA
GetWindow
GetPropW
ReleaseDC
GetFocus
GetScrollInfo
FillRect
SetWindowPos
SetCursor
IsWindow
GetWindowTextW
EndDialog
IsCharAlphaNumericW
ClientToScreen
DefWindowProcW
GetClipCursor
CharNextW
UpdateWindow
SetDlgItemTextW
SystemParametersInfoW
GetDesktopWindow
GetActiveWindow
GetSysColor
InvalidateRect
SendDlgItemMessageW
MoveWindow
GetSysColorBrush
EnableWindow
PostMessageW
wsprintfW
GetWindowRect
FrameRect
GetNextDlgTabItem
GetDlgItem
GetWindowLongW
GetWindowTextLengthW
EndPaint
CharUpperW
GetDC
DestroyWindow
SetScrollInfo

advapi32

AdjustTokenPrivileges
RegDeleteKeyW
RegEnumKeyW
RegSetValueW
LookupPrivilegeValueW
RegCloseKey
LookupAccountNameW
RegOpenKeyExA
RegSetValueExW
RegCreateKeyExW
RegFlushKey
RegSetValueExA
RegCreateKeyW
RegConnectRegistryW
RegUnLoadKeyW
RegSaveKeyW
RegLoadKeyW
RegDeleteValueW
RegEnumValueW
RegRestoreKeyW

Sections

.text
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 420KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 403B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8aeac11eba70525f9cac1c455d55dd41

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 122KB - Virtual size: 121KB

.data Size: 105KB - Virtual size: 420KB

.pdata Size: 512B - Virtual size: 403B

.rdata Size: 3KB - Virtual size: 2KB

.rsrc Size: 93KB - Virtual size: 92KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 122KB - Virtual size: 121KB

.data
Size: 105KB - Virtual size: 420KB

.pdata
Size: 512B - Virtual size: 403B

.rdata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 93KB - Virtual size: 92KB

.reloc
Size: 1KB - Virtual size: 4KB