9af759a2cead074542543e4a33d08765a7da2ffb0342748db24f04497193aa2c

General

Target

9af759a2cead074542543e4a33d08765a7da2ffb0342748db24f04497193aa2c
Size

867KB
MD5

231197ffc246458c572a76abbc6d4e30
SHA1

b821fb256547525881bdecaffb3e45249821013f
SHA256

9af759a2cead074542543e4a33d08765a7da2ffb0342748db24f04497193aa2c
SHA512

fb09b086b3af746283732c7a143df391f64a8377ad3e9dd85c58602b9b50797b2691cddfb50cfe2c4d43b0c6e21f943d4d871255482d1f01407490f8a8932a87
SSDEEP

24576:SseHWGpRY2vDXUbe2a+WnRIm2vzOLdHwwO9uREF0q:5eXXUbvGRe4dHwwO9uREF0q

Score

N/A

Malware Config

Signatures

Files

9af759a2cead074542543e4a33d08765a7da2ffb0342748db24f04497193aa2c
.exe windows x86

1c96d0e98f6ab8075e112b5a48e5fa21

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__getmainargs
fclose
_wtoi
malloc
qsort
exit
?what@exception@@UBEPBDXZ
__CxxFrameHandler
_XcptFilter
__set_app_type
__p__commode
strchr

kernel32

GlobalAlloc
SetFileAttributesA
GlobalDeleteAtom
IsBadCodePtr
CreateMutexA
lstrlenA
GlobalFindAtomW
LoadLibraryW
GetEnvironmentVariableA
GetWindowsDirectoryA
GetTempPathW
SetConsoleCtrlHandler
OutputDebugStringA
GetModuleHandleW
GetCurrentProcess
ResumeThread
GetFileType
ReleaseMutex
lstrcmpiW

gdi32

MoveToEx
BitBlt
CreateDIBitmap
CreateFontIndirectW
RealizePalette
GetPixel
GetDIBits

user32

GetMenuState
IsDlgButtonChecked
MoveWindow
FillRect
GetTopWindow
SetScrollPos
LoadIconA
PostMessageW
CallWindowProcW
SetRectEmpty
LoadBitmapA
SetParent
ShowWindow
EqualRect

advapi32

InitializeAcl
QueryServiceStatus
RegQueryValueExW
RegOpenKeyExA

ole32

CoTaskMemFree
StringFromGUID2

Sections

.text
Size: 417KB - Virtual size: 416KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 182KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c96d0e98f6ab8075e112b5a48e5fa21

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

gdi32

user32

advapi32

ole32

Sections

.text Size: 417KB - Virtual size: 416KB

.rdata Size: 90KB - Virtual size: 89KB

.data Size: 182KB - Virtual size: 1.7MB

.rsrc Size: 175KB - Virtual size: 175KB

.reloc Size: 1024B - Virtual size: 908B

.text
Size: 417KB - Virtual size: 416KB

.rdata
Size: 90KB - Virtual size: 89KB

.data
Size: 182KB - Virtual size: 1.7MB

.rsrc
Size: 175KB - Virtual size: 175KB

.reloc
Size: 1024B - Virtual size: 908B