b213ba5860078743ec705ba0ac9bc9c0b423735cb326fd237c970ffaabe4e1dd

Sharing

Copy URL

Twitter E-mail

General

Target

b213ba5860078743ec705ba0ac9bc9c0b423735cb326fd237c970ffaabe4e1dd
Size

113KB
MD5

0de3f502125f1caca5a04d63839af9a9
SHA1

7c8341d9f11c6c153517cb1ab7972f6bd7cef7a9
SHA256

b213ba5860078743ec705ba0ac9bc9c0b423735cb326fd237c970ffaabe4e1dd
SHA512

d90382da87d66e27ea13c47c292d94668f0087d3297d77557b08790f4ffdd77e62f3e3bfc430a2136af6c277222c633e6869cec49db23f44eb818507984422f4
SSDEEP

1536:VQk5C8WEZRSDQ7UbsWHYM2/KmbwM7aex1l/Ohb5fwvnheVkoxErQdJc:VnDH+MW4nTbmu05f4heVksHc

Score

N/A

Malware Config

Signatures

Files

b213ba5860078743ec705ba0ac9bc9c0b423735cb326fd237c970ffaabe4e1dd
.exe windows x86

dd46d0afbee05ba7b1572dd861450c43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

_controlfp
_except_handler3
__setusermatherr
_adjust_fdiv
__set_app_type
__p__commode
__getmainargs
_XcptFilter
__p__fmode
_initterm
__p___initenv
_exit

kernel32

GetExitCodeProcess
LocalAlloc
GetStringTypeA
GetLocaleInfoA
IsDBCSLeadByte
GetConsoleMode
GetProcessHeap
GetEnvironmentVariableA
GetEnvironmentStringsW
GetSystemInfo
GetWindowsDirectoryA
CreateDirectoryA
GetThreadLocale
SetHandleCount
LocalFileTimeToFileTime
LoadResource
InterlockedDecrement
GetCPInfo
lstrcmpiA
RemoveDirectoryA
SetFileAttributesA
WideCharToMultiByte
SetFileTime
GetTempPathA
GlobalUnlock
GetDateFormatA
InterlockedCompareExchange
LCMapStringW
GetDriveTypeA
VirtualProtect
GetVersion
GetModuleHandleA
GetUserDefaultLCID
DeleteFileA
EnumCalendarInfoA
SetErrorMode
GetFileTime
lstrcmpA
GetUserDefaultLangID
lstrcpynA
MulDiv
GetModuleHandleW
IsDebuggerPresent
lstrcmpiW
FlushFileBuffers
GetCurrentProcess
GetSystemTime
GetStartupInfoW
InterlockedExchange
GetCurrentDirectoryA
GetPrivateProfileStringA

user32

UnregisterClassA
GetMenu
GetWindowPlacement
GetScrollPos
EqualRect
SetMenu
GetParent
MessageBeep
DestroyMenu
FillRect
GetClientRect
CloseClipboard
GetIconInfo
IsWindow
EmptyClipboard
GetKeyState
WaitMessage
ReleaseCapture
GetFocus
DrawFrameControl
OemToCharA
GetScrollRange
GetSubMenu
CheckMenuItem
RedrawWindow
PostMessageA
FindWindowA
GetDesktopWindow
UpdateWindow
IsWindowEnabled
CreatePopupMenu
GetKeyboardType
IsZoomed
SendDlgItemMessageA
IsDialogMessageA
GetDlgItem
DestroyCursor
GetDCEx
ShowCursor
GetSysColorBrush
GetSysColor
TranslateMessage
RegisterClassA

advapi32

RegCreateKeyA
RegQueryInfoKeyW
CryptReleaseContext
GetUserNameA
CloseServiceHandle
CheckTokenMembership
OpenServiceA
CryptCreateHash
LookupPrivilegeValueA
RegFlushKey
OpenSCManagerA
RegQueryInfoKeyA
AddAccessAllowedAce
RegDeleteValueA
CopySid
RegEnumKeyExW
RevertToSelf
EqualSid
RegDeleteValueW
InitiateSystemShutdownA
OpenThreadToken
QueryServiceStatus
InitializeAcl
RegEnumKeyExA
RegOpenKeyExW
CryptDestroyHash
RegOpenKeyA
OpenSCManagerW
ControlService
RegEnumKeyW
RegDeleteKeyW
RegEnumKeyA
RegCloseKey
FreeSid
DeleteService
RegQueryValueA

Sections

.text
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd46d0afbee05ba7b1572dd861450c43

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

Sections

.text Size: 1024B - Virtual size: 844B

.rdata Size: 55KB - Virtual size: 55KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 35KB - Virtual size: 34KB

.text
Size: 1024B - Virtual size: 844B

.rdata
Size: 55KB - Virtual size: 55KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 35KB - Virtual size: 34KB