0a39fc9075116f2e5a7ef220b9473e3f073b361f0d1f3316fc6684e5ff553b78

General

Target

0a39fc9075116f2e5a7ef220b9473e3f073b361f0d1f3316fc6684e5ff553b78
Size

22KB
MD5

05b2f69e24a11d8e32b0a69d04b34670
SHA1

305c7af778f6e2d024af45035cc72ef5902344f2
SHA256

0a39fc9075116f2e5a7ef220b9473e3f073b361f0d1f3316fc6684e5ff553b78
SHA512

b97f8eb91baa7829c6050c938695bb28bc7f806c153c2ec0f5ffc616d4715c932e59b93280d9a67e5dbceadd3cb041c75b73451ab4037f4a3d64d0fa3c525560
SSDEEP

384:CbYrreCFvbZEYz6/+qTIWZtXizO7ymnawz0VSaiWjgp8s2bLLycWl/sl8:XrreCFvlYTTIW3r7ymaa0gWjjWNl/x

Score

N/A

Malware Config

Signatures

Files

0a39fc9075116f2e5a7ef220b9473e3f073b361f0d1f3316fc6684e5ff553b78
.exe windows x86

6dadfa97a3f706ececc4c5a2b9b4255c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_ctype
_execve
fgetc
_atoldbl
_futime64
_CIacos
_heapset
fprintf
localeconv
_wcslwr
_tzname
_adj_fdivr_m16i
wcslen
__lconv_init
getwc
__p__acmdln
wcsftime
_CIlog10
_wsplitpath
_lfind
puts
strerror
_access
_mbctolower
_adj_fprem

user32

EnumWindowStationsA
ChangeClipboardChain
ExcludeUpdateRgn

gdi32

SetBitmapDimensionEx
SetFontEnumeration
DeviceCapabilitiesExA
SetBkMode
GetDeviceGammaRamp
StrokePath
AbortPath
SetBrushOrgEx
PolyDraw

kernel32

SetSystemPowerState
GetBinaryTypeA
GetModuleHandleW
SetProcessWorkingSetSize
SetLocaleInfoW
GetStartupInfoW
GenerateConsoleCtrlEvent
SetConsoleDisplayMode
lstrcmpW
ExitVDM
lstrcmpA
VirtualFree
SetFileAttributesW
lstrcmpiW
VirtualAlloc
CmdBatNotification
SetNamedPipeHandleState
GetSystemTime
Sleep
MoveFileWithProgressW
DefineDosDeviceA
lstrlenA
MoveFileA
ExitThread
GetLocalTime
VirtualQuery
lstrcmpiA
GetModuleHandleA
lstrlenW
ExitProcess
FillConsoleOutputAttribute

shell32

InternalExtractIconListW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kbsus
Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mbhf
Size: 6KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6dadfa97a3f706ececc4c5a2b9b4255c

Headers

File Characteristics

Imports

msvcrt

user32

gdi32

kernel32

shell32

Sections

.text Size: 4KB - Virtual size: 4KB

.kbsus Size: 10KB - Virtual size: 20KB

.mbhf Size: 6KB - Virtual size: 16KB

.reloc Size: 1024B - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 4KB

.kbsus
Size: 10KB - Virtual size: 20KB

.mbhf
Size: 6KB - Virtual size: 16KB

.reloc
Size: 1024B - Virtual size: 1KB