2ccc19837a7a5f2816fd0ca98b07322c3408413384c167dabe666e5c14d3fee7

General

Target

2ccc19837a7a5f2816fd0ca98b07322c3408413384c167dabe666e5c14d3fee7
Size

128KB
MD5

0dfe7d903d738ec0772d3427db18ed61
SHA1

25509a3749f58ca6ae635ff2ac60df67cd3faac0
SHA256

2ccc19837a7a5f2816fd0ca98b07322c3408413384c167dabe666e5c14d3fee7
SHA512

9ab54282a7ee1d397760a6af6ac33de19c0525046a82c47f8a7c08328a282d15595dd20bc89fedb6463e4fd16f547abe0ed23b92e4cd309aa91a920280bb5c85
SSDEEP

3072:qtaJbOYlgSdVQqPtzULR+Mv4MYQybDpj3CWXGQZQ:qAI2V7zz4bYfNb3XGQZ

Score

N/A

Malware Config

Signatures

Files

2ccc19837a7a5f2816fd0ca98b07322c3408413384c167dabe666e5c14d3fee7
.exe windows x86

b741bc469ae1e52c56dcc97ab3536002

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

towlower
memcmp
_XcptFilter
_osver
wcsncmp
_wcslwr
__getmainargs
isspace
_fullpath
__p__commode
__set_app_type
fclose
isdigit
_acmdln
_setmode
exit
_initterm
rename
_cexit
fprintf
_mbscmp
__mb_cur_max
__setusermatherr
_exit
sqrt
_ftol
__p__fmode
_fdopen
_fileno
swprintf
atol
_adjust_fdiv
_filbuf
_except_handler3

kernel32

SetThreadLocale
GetCurrentProcessId
MoveFileA
IsBadCodePtr
CreateDirectoryA
GetSystemDirectoryW
GetLocalTime
GetCommandLineA
DeviceIoControl
GlobalHandle
DuplicateHandle
MultiByteToWideChar
lstrcmpiA
SetFileAttributesA
WriteConsoleA
VirtualProtect
GetEnvironmentVariableA
GetModuleHandleA
CreateProcessA
DisableThreadLibraryCalls
GetStartupInfoA

user32

SetWindowLongA
GetWindowThreadProcessId
DefWindowProcA
GetSysColorBrush
CreateWindowExA
GetFocus
GetCursorPos
WindowFromPoint
SetFocus
GetTopWindow
ShowCursor
DrawEdge
ReleaseCapture
RegisterClipboardFormatA
EndDialog
GetMenuItemCount
DrawIcon

oleaut32

GetErrorInfo
CreateErrorInfo
SysStringLen
SafeArrayGetElement
SysReAllocStringLen
SysAllocStringByteLen
VariantCopy
LoadTypeLib
SafeArrayCreate
SetErrorInfo
SafeArrayGetUBound
SysStringByteLen
SafeArrayPutElement

advapi32

RegDeleteValueA
RegSetValueExW
RegEnumKeyW
RegOpenKeyExA
RegQueryValueExA
GetSecurityDescriptorDacl
RegQueryValueA
RegEnumKeyExW
CopySid
GetLengthSid
RegQueryInfoKeyW
CloseServiceHandle
CryptReleaseContext
ControlService
OpenSCManagerA

Sections

.text
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b741bc469ae1e52c56dcc97ab3536002

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

oleaut32

advapi32

Sections

.text Size: 58KB - Virtual size: 57KB

.data Size: 17KB - Virtual size: 16KB

.rsrc Size: 31KB - Virtual size: 31KB

.text
Size: 58KB - Virtual size: 57KB

.data
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 31KB - Virtual size: 31KB