ed4dbd6424cdd3ff95c3ab122d4e605508be78e9331432ad3189f73fdb71eb2a

General

Target

ed4dbd6424cdd3ff95c3ab122d4e605508be78e9331432ad3189f73fdb71eb2a
Size

4.8MB
MD5

30079e276c332ac147983062cadb3ac8
SHA1

4a70e4dd9ce2370d146feb45b84ade67b2928e1e
SHA256

ed4dbd6424cdd3ff95c3ab122d4e605508be78e9331432ad3189f73fdb71eb2a
SHA512

04caa50bb6fbc5472b5b3935c67d6a56b6737a6571e927d9aae1043395bd8af62bc8890317d9a97c35ada06bd14cb4227297eeecb16c33df7d5ce8e0a50b125e
SSDEEP

98304:rk5U7HT3rQOhJ2Ragl9eE1UUwOThhIIfv9urWUs8cg:rGcHQ+rgfUU5XUs89

Score

N/A

Malware Config

Signatures

Files

ed4dbd6424cdd3ff95c3ab122d4e605508be78e9331432ad3189f73fdb71eb2a
.exe windows x86

2c49626e3f902e078b45f8cb0a546412

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
SetLastError
GetStartupInfoA
InterlockedIncrement
TlsGetValue
GetOEMCP
GetModuleFileNameA
VirtualAlloc
FlushFileBuffers
GetEnvironmentStringsW
QueryPerformanceCounter
GlobalFree
InterlockedDecrement
FreeLibrary
LCMapStringA
GetCPInfo
SetHandleCount
GetSystemTimeAsFileTime
GetStdHandle
GetVersionExW
GetStringTypeW
RtlUnwind
ReadFile
lstrlenW
GetTickCount
WideCharToMultiByte
FreeEnvironmentStringsW
WriteFile
GetCurrentThread
WaitForSingleObject
GetACP
GetCurrentProcess
LoadLibraryA
GetCommandLineA
HeapCreate
VirtualQueryEx
OpenEventA
_lopen
GetCurrentThreadId
CreateEventA

user32

BeginPaint
CharNextW
ClientToScreen
SetCapture
GetCursorPos
MessageBoxA
MoveWindow
KillTimer
SetWindowTextW
CreateWindowExA
GetWindowRect
SendDlgItemMessageW
UnregisterClassA
UnregisterClassW
SetRect
GetDC
IsDlgButtonChecked
GetParent
GetDesktopWindow
SetForegroundWindow

gdi32

LineTo
CreateFontA
EndPage
SetViewportOrgEx
RectVisible
CreateRectRgn

advapi32

CryptDeriveKey
CryptEncrypt
RegEnumKeyA
AllocateAndInitializeSid
LookupAccountSidW
GetSidSubAuthority
CryptGetProvParam
RegEnumValueW
CryptHashData
RegCloseKey
RegQueryInfoKeyA

Sections

.txt
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdt
Size: 79KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 466KB - Virtual size: 466KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c49626e3f902e078b45f8cb0a546412

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.txt Size: 4.0MB - Virtual size: 4.0MB

.rdt Size: 79KB - Virtual size: 86KB

.tls Size: 1024B - Virtual size: 3KB

.rsrc Size: 466KB - Virtual size: 466KB

.txt
Size: 4.0MB - Virtual size: 4.0MB

.rdt
Size: 79KB - Virtual size: 86KB

.tls
Size: 1024B - Virtual size: 3KB

.rsrc
Size: 466KB - Virtual size: 466KB