5334624de3be8af497890e5caecb98677293fc281b22ab360f4cc1cbc82471ba

General

Target

5334624de3be8af497890e5caecb98677293fc281b22ab360f4cc1cbc82471ba
Size

108KB
MD5

0c5a85ddfbbd819fc6540615ab9c23b0
SHA1

051b484d3752656af767bf2705dd52df4c35f4e3
SHA256

5334624de3be8af497890e5caecb98677293fc281b22ab360f4cc1cbc82471ba
SHA512

e9a0353db3a8505a667eb6f552b186bd2fe66b5b5b37ff444383243a640cbd6b33b2a32e67ba8b80b0854ff760a5f0944e3455b0b69c256e0ea7c76af5ad6f26
SSDEEP

1536:pqoRDXOvaoBLdBJ0R1V3OVu4yvlbCIPGEeuI5ezWYrUeFY4iFMl58TU2PzCmf:FevaoBLd/nVurlbCIPGEeuIwBrUArgBf

Score

N/A

Malware Config

Signatures

Files

5334624de3be8af497890e5caecb98677293fc281b22ab360f4cc1cbc82471ba
.exe windows x86

6bb98f55253a9df02b5bfb442c3f3b7d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeviceIoControl
GetTickCount
SetLastError
ReadFile
CloseHandle
CreateFileA
GetLastError
GetWindowsDirectoryA
GetPrivateProfileIntA
GetModuleFileNameA
HeapDestroy
GetFileType
LCMapStringW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
WriteFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
lstrcmpA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
LCMapStringA
HeapCreate
VirtualFree
RtlUnwind
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
HeapAlloc
VirtualAlloc
HeapReAlloc
GetACP
SetStdHandle
FlushFileBuffers
SetFilePointer
GetCPInfo
GetOEMCP
GetProcAddress
LoadLibraryA
SetEndOfFile

user32

wvsprintfA
wsprintfA

advapi32

RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6bb98f55253a9df02b5bfb442c3f3b7d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 20KB - Virtual size: 17KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 80KB - Virtual size: 80KB

.text
Size: 20KB - Virtual size: 17KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 80KB - Virtual size: 80KB