ba2a3dbb6c574aca4a1cf2e58e3eb9d03740b7b144fa6390d3381dcf011e19ba

Sharing

Copy URL Twitter E-mail

General

Target

ba2a3dbb6c574aca4a1cf2e58e3eb9d03740b7b144fa6390d3381dcf011e19ba
Size

160KB
MD5

403539a3f41b52e074c6339f6ce9e380
SHA1

0cdae820c91c186c450339be7f44ebe77b1ba900
SHA256

ba2a3dbb6c574aca4a1cf2e58e3eb9d03740b7b144fa6390d3381dcf011e19ba
SHA512

7aa2405d4beba832a12b22231b0614d996ba58f0f974c16e38ac216971b37031d416a2481eed93f914e1d01e43d5b727c7eac1c85521fe1fb82a1484e09ec3b6
SSDEEP

3072:LYIDz+Cp8QKOnzuWn62cC0f1/F7Jy5rPhZNjxVTMX:LYIDK9czbnACoF7w/uX

Score

N/A

Malware Config

Signatures

Files

ba2a3dbb6c574aca4a1cf2e58e3eb9d03740b7b144fa6390d3381dcf011e19ba
.exe windows x86

6b6230c159a70a4ac3f4158a58ca53c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
GetModuleFileNameA
GetModuleHandleA
Sleep
ReleaseMutex
DeviceIoControl
MapViewOfFile
OpenFileMappingA
lstrcpynA
lstrlenA
CreateMutexA
OpenMutexA
GetACP
CloseHandle
CreateFileA
lstrcatA
LoadLibraryA
GetProcAddress
GetCurrentProcess
DefineDosDeviceA
FreeLibrary
HeapCreate
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
IsBadWritePtr
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetCPInfo
WriteFile
RtlUnwind
HeapFree
VirtualFree
GetStartupInfoA
HeapDestroy
GetFileType
GetStdHandle
GetStringTypeW
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA

user32

IsDialogMessageA
ScreenToClient
MoveWindow
GetDlgItem
GetWindowRect
ShowWindow
MessageBoxA
LoadStringA
DefWindowProcA
SetForegroundWindow
LoadIconA
LoadCursorA
RegisterClassA
CreateDialogParamA
GetMessageA
SetWindowTextA
TranslateMessage
DispatchMessageA
ExitWindowsEx
EndDialog
GetWindowLongA
PostMessageA
PostQuitMessage
WinHelpA
SendMessageA
EnableWindow
FindWindowA
DestroyWindow
SetTimer
KillTimer
SetDlgItemTextA
DialogBoxParamA
UpdateWindow

advapi32

RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA

setupapi

SetupOpenInfFileA
SetupCloseInfFile
SetupGetLineTextA

comctl32

ord17

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6b6230c159a70a4ac3f4158a58ca53c3

Headers

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

comctl32

Sections

.text Size: 32KB - Virtual size: 28KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 116KB - Virtual size: 116KB

.text
Size: 32KB - Virtual size: 28KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 116KB - Virtual size: 116KB