da5b8a73aadfb2cf8b6476426ce5c787766bec7fbe49c7eabeb915bda32fd733

General

Target

da5b8a73aadfb2cf8b6476426ce5c787766bec7fbe49c7eabeb915bda32fd733
Size

44KB
MD5

0524a5cf0769931066b49d409939bcd6
SHA1

a10368e5d40817ce75eb57d6882d03004ca29909
SHA256

da5b8a73aadfb2cf8b6476426ce5c787766bec7fbe49c7eabeb915bda32fd733
SHA512

97382d7542e274541b00a75a6c1b15d789edbb0b384f5add700117acfc08fc354209dffa1e8814f09d0e121eb4ab583740b1c0660196f3fed8e4cf17c5d83eca
SSDEEP

768:XBvSdbcJnm2q/3oPFytwd8ZC1JYUNm+opKIvxWN8/OVjjcmr:xvSd4JP+3oPFJWZC1y+o5UN8+

Score

N/A

Malware Config

Signatures

Files

da5b8a73aadfb2cf8b6476426ce5c787766bec7fbe49c7eabeb915bda32fd733
.exe windows x86

2a6e21efa09aafe612654c3562507e3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
GetModuleFileNameA
TlsSetValue
GetCommandLineA
GetSystemDefaultLangID
TlsGetValue
GetCurrentThreadId
GetModuleHandleA
GetDriveTypeA
TlsFree
GetACP
CloseHandle
GetCurrentProcessId
GetStartupInfoA
IsValidCodePage
GetLogicalDrives
FreeLibrary
GetCurrentProcess
VirtualAlloc
TlsAlloc
Sleep

user32

ShowWindow
BeginPaint
GetForegroundWindow
GetFocus
RegisterClassA
GetWindowLongA
ReleaseDC
IsWindowVisible
GetClassLongA
GetWindowDC
OpenIcon
CreateWindowExA
GetActiveWindow
GetWindowTextA
GetDC
GetWindowTextLengthA
UpdateWindow
GetSystemMetrics
GetWindow

advapi32

RegCloseKey
RegQueryValueExA
GetUserNameA
RegOpenKeyExA
RegCreateKeyExA
IsTextUnicode

version

VerLanguageNameA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2a6e21efa09aafe612654c3562507e3d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

version

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 40KB

.rsrc Size: 3KB - Virtual size: 72KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 40KB

.rsrc
Size: 3KB - Virtual size: 72KB