4773581375b40ee355fad26eeb0647491a2f571936298ee16a7f1c0deccc93e6

General

Target

4773581375b40ee355fad26eeb0647491a2f571936298ee16a7f1c0deccc93e6
Size

772KB
MD5

331e74df6a61dd35c401adece279d700
SHA1

a3c34913fdb473337dcccb1629a7697c5663b07d
SHA256

4773581375b40ee355fad26eeb0647491a2f571936298ee16a7f1c0deccc93e6
SHA512

916d2042782efbd3c1186305864304a63c60a8c5bf758fd3cff544ddb5973fa3ba739dceabd7b9ed3dc66a98e0c4cda52e045685cf2a7bc03a18c41decfc80cb
SSDEEP

12288:9sduYLz/lA2uZOV7pIuBn6Ehz4tkHTOOZ41Z0s:4uYflA2COV9IupDUtkSz5

Score

N/A

Malware Config

Signatures

Files

4773581375b40ee355fad26eeb0647491a2f571936298ee16a7f1c0deccc93e6
.dll windows x86

e76ef38d2fa750ea61ff40e6bc2ca551

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
SetLastError
DeleteCriticalSection
GetLastError
TlsFree
TlsSetValue
VirtualAlloc
GetModuleFileNameA
CreateFileA
GetStartupInfoA
TlsAlloc
IsBadReadPtr
GlobalSize
TlsGetValue
InitializeCriticalSection
SetThreadPriority
QueryPerformanceCounter
GetModuleHandleA
FreeLibrary
GlobalAlloc
GetDateFormatA
GetCurrentThreadId
LoadLibraryA
GetTickCount
GlobalFree
VirtualFree
Sleep
GetProcAddress

user32

GetWindowRect
wsprintfA
GetParent
MessageBoxA
GetDC
ReleaseDC

msvcrt

fread
ftell
strstr
fclose
fwrite
fopen
atol
malloc
realloc
strtok
strncmp
free
_CIpow
sprintf
strcmp
fprintf
strcpy
abort
fseek
getenv
fgets
exit
memset
_assert
memcpy
_stricmp
memmove
rand
sscanf
_iob
_ftol

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

Exports

Exports

Number_Check
get_signature
memcpy_check
read_image
set_convert_mono

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e76ef38d2fa750ea61ff40e6bc2ca551

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

advapi32

Exports

Exports

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 108KB - Virtual size: 107KB

.data Size: 256KB - Virtual size: 256KB

.rsrc Size: 204KB - Virtual size: 203KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 108KB - Virtual size: 107KB

.data
Size: 256KB - Virtual size: 256KB

.rsrc
Size: 204KB - Virtual size: 203KB

.reloc
Size: 8KB - Virtual size: 7KB