fa5c8ba6fd00b78456031ccdb4fd08b3c58e1d2bbdbd8a1aaf9f21213af5af34

General

Target

fa5c8ba6fd00b78456031ccdb4fd08b3c58e1d2bbdbd8a1aaf9f21213af5af34
Size

160KB
MD5

220dd2dbe371b2e172c1fa244f7b1539
SHA1

939faf54a68878e21d92b8fe2ab47c04bd5e946f
SHA256

fa5c8ba6fd00b78456031ccdb4fd08b3c58e1d2bbdbd8a1aaf9f21213af5af34
SHA512

098e104e47f46a27dea88b0c52d6e0e1b12a0b2fd94bdf33a2815afdb80682c4998c957f3e97df9b0b34b97dc12b7a49cc6bcf84bfeabb0a2f7d5506f29ddbc4
SSDEEP

3072:itvEyF3oDTDEmABDVNwgy9xpS3VztlqLk+27M/AmuKTQcVW22DjXSqBLok7Cnqd:QvdMNbx835Pq927iTuKTn5+Lh7Cnqd

Score

N/A

Malware Config

Signatures

Files

fa5c8ba6fd00b78456031ccdb4fd08b3c58e1d2bbdbd8a1aaf9f21213af5af34
.exe windows x86

f916e6b1b7975fa69c9fcd4bed9f0a69

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
_wcsnicmp
wcsncmp
wcsncpy
strlen
strcpy
wcscmp
memcpy
wcslen

kernel32

GetModuleHandleW
HeapCreate
GetModuleFileNameW
HeapDestroy
ExitProcess
GetTickCount
Sleep
GetLastError
TerminateProcess
CloseHandle
HeapAlloc
HeapFree
GetCurrentThreadId
GetCurrentProcessId
FreeLibrary
LoadLibraryW
WideCharToMultiByte
GetProcAddress
HeapReAlloc

user32

MessageBoxW
GetWindowThreadProcessId
IsWindowVisible
GetWindowLongA
GetForegroundWindow
IsWindowEnabled
EnableWindow
EnumWindows
SetWindowPos
EnumDisplaySettingsW
GetSystemMetrics

gdi32

CreateDCW
GetDeviceCaps
DeleteDC

comctl32

InitCommonControlsEx

ole32

CoInitialize

Sections

.code
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.d60z
Size: 141KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f916e6b1b7975fa69c9fcd4bed9f0a69

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comctl32

ole32

Sections

.code Size: 3KB - Virtual size: 3KB

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 512B - Virtual size: 118B

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 3KB

.d60z Size: 141KB - Virtual size: 144KB

.code
Size: 3KB - Virtual size: 3KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 512B - Virtual size: 118B

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 3KB

.d60z
Size: 141KB - Virtual size: 144KB