b671586adf34c6d0547fc988a5f1e0443b1bddbc3b0239d24e940fdd07e63f1c

General

Target

b671586adf34c6d0547fc988a5f1e0443b1bddbc3b0239d24e940fdd07e63f1c
Size

196KB
MD5

220e0f073e1d21384173ebd1a4effcd7
SHA1

3d69fa68f2cdcab36e4628cd27cc698147fcbc22
SHA256

b671586adf34c6d0547fc988a5f1e0443b1bddbc3b0239d24e940fdd07e63f1c
SHA512

2da3a527cdc44e4ced9b4177782a6fad17717449fca0c1d89af9460c5e8dc67422aa782b1d814a46bfa37241cd3d5da6e80a5f936f1dfbf11a79413f23135b4d
SSDEEP

3072:LRttuKltqdWJMNKLlo0+y+Lh+1SCxCcE91BbY4vnxgLQdkXstxwckBwkRQrewcxV:V3Pex0B1SAO5WLQdkT5Gq50AxNhE/KX

Score

N/A

Malware Config

Signatures

Files

b671586adf34c6d0547fc988a5f1e0443b1bddbc3b0239d24e940fdd07e63f1c
.exe windows x86

1e5127d2435e1b6a3fd1486260c0c480

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResumeThread
lstrcpyA
GetVersionExA
ReleaseMutex
GetCurrentThreadId
GetCurrentThread
GetWindowsDirectoryA
WriteFile
SuspendThread
GetCurrentProcess
CreateSemaphoreA
ReadFile
GetFileSize
GetLocalTime
DeleteFileA
CreateMutexA
ResetEvent
WaitForSingleObject
GetProcAddress
LoadLibraryA
SetEvent
GetCurrentProcessId
CreateEventA
GetCurrentDirectoryA
GetModuleHandleA
GetSystemDirectoryA
ExitThread
CreateThread
ExitProcess
CreateFileA
SetFilePointer
CloseHandle
GetComputerNameA
GetStdHandle
lstrlenA

advapi32

GetUserNameA

user32

FindWindowA
RegisterClassA
GetActiveWindow
ShowWindow
GetClassInfoExA
GetSystemMetrics
wsprintfA
MessageBoxA
PostMessageA
CreateDialogParamA
GetWindow
GetForegroundWindow
SendMessageA

ntdll

tan
_chkstk
atan

ole32

CoUninitialize
CoInitialize

Sections

.text
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e5127d2435e1b6a3fd1486260c0c480

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

user32

ntdll

ole32

Sections

.text Size: 124KB - Virtual size: 122KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 56KB - Virtual size: 55KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 124KB - Virtual size: 122KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 56KB - Virtual size: 55KB

.rsrc
Size: 4KB - Virtual size: 1KB