f9a0aa7c2672cf4a8de2e41f84c6579975bb0fdd675866312928fef362ee2a04

Sharing

Copy URL Twitter E-mail

General

Target

f9a0aa7c2672cf4a8de2e41f84c6579975bb0fdd675866312928fef362ee2a04
Size

200KB
MD5

0e5dedf38054cab1a3a9d84d4e3d4d16
SHA1

352569461feff93c66abc738f20ca0510fb1cb39
SHA256

f9a0aa7c2672cf4a8de2e41f84c6579975bb0fdd675866312928fef362ee2a04
SHA512

82fa32b6292723b3c3af9f3bd8de53277ee366debbbfa643fe0b3ca629e74eb4a5db1ba8067ac45bd4adad0f52707147c69f7464985e327d566c2b44be0b4d93
SSDEEP

3072:LKb30oswrb7uVMaYxo6GJTHlvbI0Bagee/MuBKPsJolCPvi1xVjTBg9aZIaNI4v2:ub30oVTtzxo6CLbWspPvUrdgU3I4v2

Score

N/A

Malware Config

Signatures

Files

f9a0aa7c2672cf4a8de2e41f84c6579975bb0fdd675866312928fef362ee2a04
.exe windows x86

8cbdf19d8587b50820b40d771b5e1243

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

SetEvent
CreateEventA
CreateThread
Sleep
lstrcpyA
ResumeThread
WaitForSingleObject
TerminateProcess
GetLastError
CreateProcessA
GetSystemInfo
GetVersionExA
ReadFile
SetFilePointer
CreateFileA
GetProcessHeap
GetModuleHandleA
WriteFile
HeapFree
HeapAlloc
CloseHandle
CreateMutexA
GetCommandLineA
GetProcAddress
FreeLibrary
LoadLibraryA
OpenEventA
OutputDebugStringA
LocalAlloc
lstrcatA
GetCurrentProcess
GetTickCount
lstrcmpiA
lstrcmpA
FormatMessageA
LocalFree
lstrcpynA
lstrlenA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetModuleFileNameA
FindFirstFileA
HeapDestroy
GetEnvironmentVariableA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
CreateDirectoryA
SetEndOfFile
GetDriveTypeA
GetFullPathNameA
HeapCreate
VirtualFree
GetTimeZoneInformation
VirtualAlloc
SetStdHandle
GetStringTypeW
FlushFileBuffers
LCMapStringW
LCMapStringA
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
MultiByteToWideChar
GetFileType
GetStdHandle
SetUnhandledExceptionFilter
GetEnvironmentStringsW
SetCurrentDirectoryA
GetCurrentDirectoryA
RtlUnwind
GetFileAttributesA
ExitProcess
GetLocalTime
GetStartupInfoA
GetVersion
SetConsoleCtrlHandler
GetACP
GetCPInfo
GetEnvironmentStrings
SetHandleCount
HeapReAlloc
IsBadWritePtr
FreeEnvironmentStringsW
WideCharToMultiByte
GetOEMCP
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA

user32

SystemParametersInfoA
TranslateMessage
wsprintfA
LoadStringA
SendMessageA
LoadIconA
RegisterClassA
LoadCursorA
SetWindowPos
MessageBoxA
GetParent
DefWindowProcA
ShowWindow
CreateWindowExA
GetClientRect
wvsprintfA
DispatchMessageA
IsWindow
IsDialogMessageA
PostQuitMessage
BeginPaint
EndPaint
GetMessageA
GetWindowRect
GetWindowPlacement

gdi32

GetStockObject

advapi32

RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumValueA

winmm

timeGetTime

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8cbdf19d8587b50820b40d771b5e1243

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

winmm

Sections

.text Size: 64KB - Virtual size: 61KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 19KB

.rsrc Size: 108KB - Virtual size: 108KB

.text
Size: 64KB - Virtual size: 61KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 108KB - Virtual size: 108KB