782f42b4e08ae249effdcb0292797b5f4fc4a78a17f30f4247ff37c9a9cfe98f

Sharing

Copy URL Twitter E-mail

General

Target

782f42b4e08ae249effdcb0292797b5f4fc4a78a17f30f4247ff37c9a9cfe98f
Size

223KB
MD5

29a4b1441710945bf24219127bf558d0
SHA1

7b16acf73e554ed7d02817ff3d8784a2578b6ed3
SHA256

782f42b4e08ae249effdcb0292797b5f4fc4a78a17f30f4247ff37c9a9cfe98f
SHA512

6f7d2f25653182b9a86db7fa83851c203e229b329bdae6bddc3ceb8955411e447e8e77720824d0213dd4f38caf15739e3460dc4c5bc932b7d8a01d6d101c0b06
SSDEEP

3072:sK0O4HkYOSuejOfzMQRXiZ5J8hetZ0Bagee/3BjIHhoIW0fqayu2VNEQlKkmeQWx:Xr2kYFmNwZIhbBjYhuu2XnMkPr6m

Score

N/A

Malware Config

Signatures

Files

782f42b4e08ae249effdcb0292797b5f4fc4a78a17f30f4247ff37c9a9cfe98f
.exe windows x86

2f04de312265ace3d8f1e52fb3736255

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetExitCodeThread
CreateThread
CreateEventA
Sleep
lstrcatA
SetFilePointer
CreateFileA
GetLocalTime
WriteFile
GetModuleFileNameA
GetModuleHandleA
HeapFree
HeapAlloc
GetProcessHeap
ReadFile
SetLastError
MoveFileExA
DeleteFileA
GetWindowsDirectoryA
GetVersion
GetCommandLineA
GetProcAddress
FreeLibrary
LoadLibraryA
OpenEventA
OutputDebugStringA
LocalAlloc
GlobalMemoryStatus
GetComputerNameA
GetVersionExA
GetCurrentThread
GetDiskFreeSpaceA
GetVolumeInformationA
GetDriveTypeA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
CreateDirectoryA
SetEndOfFile
SetConsoleCtrlHandler
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetFullPathNameA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
SetEvent
GetSystemInfo
CreateMutexA
GetLastError
WaitForSingleObject
CloseHandle
GetTickCount
lstrcpyA
ExitThread
lstrcmpiA
lstrcmpA
FormatMessageA
LocalFree
lstrcpynA
lstrlenA
GetTimeZoneInformation
CompareStringA
CompareStringW
GetCurrentProcess
SetEnvironmentVariableA
SetCurrentDirectoryA
GetCurrentDirectoryA
RtlUnwind
ExitProcess
TerminateProcess
GetStartupInfoA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetCPInfo
GetACP
GetOEMCP
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA

user32

GetSystemMetrics
wvsprintfA
GetWindowPlacement
GetClientRect
SystemParametersInfoA
GetWindowRect
SetWindowPos
GetParent
LoadIconA
LoadCursorA
RegisterClassA
ShowWindow
PostQuitMessage
BeginPaint
EndPaint
DefWindowProcA
MessageBoxA
PeekMessageA
TranslateMessage
DispatchMessageA
wsprintfA
SendMessageA
LoadStringA
CreateWindowExA

gdi32

GetStockObject

advapi32

EqualSid
FreeSid
LookupAccountSidA
OpenThreadToken
OpenProcessToken
GetTokenInformation
RegDeleteValueA
RegEnumValueA
RegDeleteKeyA
RegQueryInfoKeyA
RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
AllocateAndInitializeSid

winmm

timeGetTime

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2f04de312265ace3d8f1e52fb3736255

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

winmm

Sections

.text Size: 84KB - Virtual size: 80KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 20KB - Virtual size: 23KB

.rsrc Size: 100KB - Virtual size: 100KB

.text
Size: 84KB - Virtual size: 80KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 20KB - Virtual size: 23KB

.rsrc
Size: 100KB - Virtual size: 100KB