93c38b3e21f2906f94471dec88390f98c5efcd0ae0c74f51492f4c1a6ecfdc4e

General

Target

93c38b3e21f2906f94471dec88390f98c5efcd0ae0c74f51492f4c1a6ecfdc4e
Size

168KB
MD5

043811bfa25fababa2942ac023594063
SHA1

e43e34a875fc2175db49711b61425a6c8366ea35
SHA256

93c38b3e21f2906f94471dec88390f98c5efcd0ae0c74f51492f4c1a6ecfdc4e
SHA512

6af961eb80db6abf5440507df682332b3fc8b04c7be7cd9e008ed56771395c436186a8f113c631d19a1924c0c810189d60ea1c809cbcf56cfd4d682670b0317f
SSDEEP

3072:9qEd4jClHeneczmVne1dvTCd2R5P7P3YFuGy+M/n/GSm:QEa7zmVnEvTi2nDYFud+M/n/O

Score

N/A

Malware Config

Signatures

Files

93c38b3e21f2906f94471dec88390f98c5efcd0ae0c74f51492f4c1a6ecfdc4e
.exe windows x86

8f30de729486de34df53f4223bebb55f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFreeEx
GetTickCount
VirtualAlloc
VirtualFree
GetLastError
ReleaseSemaphore
LoadLibraryA
VirtualProtect
GetProcAddress
GetModuleHandleA
GlobalAlloc
GetCurrentProcess
GetTempFileNameA
GetProcessHeap
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
HeapSize
VirtualQuery
InterlockedExchange
RtlUnwind
GetCPInfo
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
ExitProcess
TerminateProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapAlloc
HeapReAlloc
GetACP
GetOEMCP
GetSystemInfo

user32

GetDesktopWindow
GetDC
IsIconic
GetCursorPos
SetCursorPos
GetWindowRect
LoadBitmapA

shell32

SHCreateShellItem

psapi

GetWsChanges

msvfw32

DrawDibEnd
DrawDibSetPalette

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f30de729486de34df53f4223bebb55f

Headers

File Characteristics

Imports

kernel32

user32

shell32

psapi

msvfw32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 128KB - Virtual size: 130KB

.rsrc Size: 8KB - Virtual size: 105KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 128KB - Virtual size: 130KB

.rsrc
Size: 8KB - Virtual size: 105KB