7fa88706094e18588a055a91052d67e33095d0ea43afd43e33217244e6710fa7

General

Target

7fa88706094e18588a055a91052d67e33095d0ea43afd43e33217244e6710fa7
Size

127KB
MD5

0d6fcc059787f49c206843fab372f46b
SHA1

1f790213464badfbc9e91a9f6aa1facf9c55a788
SHA256

7fa88706094e18588a055a91052d67e33095d0ea43afd43e33217244e6710fa7
SHA512

ad22f0e631f7176a9711b43e7f685c33da779434b2b325110cd6a0b7eff03ed149d888e6b86e8777b5ae65b1884b9b43ce271d6382867673690f4187a3ce2044
SSDEEP

1536:dHUEub83IdJC7FCzstrgxw9Y72tJwuA+0FDZ/9fLDytFS5TZoCWA:dHovdJCRZce9YyouAjlZVHcFSnoCWA

Score

N/A

Malware Config

Signatures

Files

7fa88706094e18588a055a91052d67e33095d0ea43afd43e33217244e6710fa7
.exe windows x86

c720f80a9156e129436b690dcc39c958

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegEnumKeyExA
RegQueryValueA
RegQueryInfoKeyA

kernel32

ExitProcess
LoadLibraryExA
VirtualAllocEx
GetModuleHandleW
IsBadHugeReadPtr
GetLastError
GetCommandLineW
GetModuleHandleA
GetProcAddress
GetCommandLineA

user32

OemToCharA
PeekMessageW
ReleaseCapture
RedrawWindow
PostMessageA
MessageBeep
PeekMessageA
OffsetRect
SendMessageA
MapVirtualKeyA
LoadIconA
SetActiveWindow
MapWindowPoints
RegisterClassA
MessageBoxA
PostQuitMessage
LoadCursorA
RegisterWindowMessageA
ScrollWindow
ReleaseDC
RemoveMenu
LoadStringA
LoadBitmapA
SendMessageW
RemovePropA
OpenClipboard
RegisterClipboardFormatA
PtInRect
LoadKeyboardLayoutA
ScreenToClient

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 512B - Virtual size: 505B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c720f80a9156e129436b690dcc39c958

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 55KB - Virtual size: 54KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 58KB - Virtual size: 58KB

.fdata Size: 512B - Virtual size: 505B

DATA Size: 6KB - Virtual size: 5KB

.gdata Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 836B

.text
Size: 55KB - Virtual size: 54KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 58KB - Virtual size: 58KB

.fdata
Size: 512B - Virtual size: 505B

DATA
Size: 6KB - Virtual size: 5KB

.gdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 836B