011b68470e58a367a3741afef872341b220b039c50c4f18b11be323631df148d

General

Target

011b68470e58a367a3741afef872341b220b039c50c4f18b11be323631df148d
Size

820KB
MD5

10bb62e859d14a6c87bc58abbb9a70b0
SHA1

4ae3b07098c3e26d9c71c69518328c1e0bd8a42c
SHA256

011b68470e58a367a3741afef872341b220b039c50c4f18b11be323631df148d
SHA512

d839e823e814040b661fbe171fc7b8eaa0344c9052580094d72a3e6adfb32e15801d7a9c634dba32f0ddc772bab83097e4492099adee78f11af54383861e234d
SSDEEP

12288:7/u4KuFKuFKutKOZ01o6wHPNqlv2CHvhoBA/EI5cZKuSdIKuSdIKuSdIKuSd:7/uQvvthZScv0l2CHJZLcrogogogo

Score

N/A

Malware Config

Signatures

Files

011b68470e58a367a3741afef872341b220b039c50c4f18b11be323631df148d
.exe windows x86

e3a09f3616e474ad30cb649e4aba472d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA
RegCloseKey

kernel32

Sleep
VirtualAlloc
HeapAlloc
CreateFileA
GetFileAttributesA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
HeapFree
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

ws2_32

WSAGetLastError
WSACancelAsyncRequest

user32

IsIconic
GetWindow
CloseWindow
PostQuitMessage
DefWindowProcA
UpdateWindow
CreateWindowExA
RegisterClassA
AnimateWindow
IsZoomed
GetWindowTextLengthA
GetWindowRect
IsWindowUnicode
GetTitleBarInfo
IsWindowVisible

Sections

.text
Size: 800KB - Virtual size: 799KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e3a09f3616e474ad30cb649e4aba472d

Headers

File Characteristics

Imports

advapi32

kernel32

ws2_32

user32

Sections

.text Size: 800KB - Virtual size: 799KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 13KB

.text
Size: 800KB - Virtual size: 799KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 13KB