e458e79dfb739feb260689a01fab172f036e82c6e81098cab833cd6808aa96d1

General

Target

e458e79dfb739feb260689a01fab172f036e82c6e81098cab833cd6808aa96d1
Size

188KB
MD5

01534a18b81e427a11f8237f5bbe1fb0
SHA1

74f7a2c97d51785494b805539719cb231611cf8c
SHA256

e458e79dfb739feb260689a01fab172f036e82c6e81098cab833cd6808aa96d1
SHA512

2db762d314ac58af856c4abe7ff06b6f0acaa3cb8dc01e187f5fbbb4c41a3deb939f1f93624219871dbf03559b3489f921b5752863002dcaff9e373065dccca8
SSDEEP

1536:bsdKDPbw3toHPXcnr2+URQEKjE+KRvk2Ajwzgi+G++tDVj8dRt6/rYYJzfZox:oADDItoH4rEswcUzgk+6uR6EYJZox

Score

N/A

Malware Config

Signatures

Files

e458e79dfb739feb260689a01fab172f036e82c6e81098cab833cd6808aa96d1
.exe windows x86

ef040de300218f962304a763ff586d3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
LoadLibraryA
GetProcAddress
GetACP
GetCPInfo
HeapReAlloc
lstrcmpW
Sleep
lstrlenA
GetCommandLineW
GetOEMCP
lstrlenW
VirtualAlloc
WriteFile
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapAlloc
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
GetStringTypeW

user32

GetWindowTextW
FindWindowW
SetWindowPos
EnumWindows
MessageBoxW
IsWindowVisible
GetClassNameW

advapi32

RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegOpenKeyW

shell32

CommandLineToArgvW

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ef040de300218f962304a763ff586d3d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 88KB - Virtual size: 88KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 88KB - Virtual size: 88KB