fc1b0a099146e9839ea978deb2fa554ab434c183a47e414c684f6209fc6962c3

General

Target

fc1b0a099146e9839ea978deb2fa554ab434c183a47e414c684f6209fc6962c3
Size

204KB
MD5

746ff3610cdc083a885e38f7cb60f514
SHA1

41580ad0d1dd4699503ddccc2f97a048837c40b0
SHA256

fc1b0a099146e9839ea978deb2fa554ab434c183a47e414c684f6209fc6962c3
SHA512

3ea21cbd9e92f47eb886e46d4236896cb9881f3943e7a5b6ffc6a88d25b0aa55e49e021719499eb96ae526e2f8ebac04bafee9b3d0ec2333f2fd49ea795cc217
SSDEEP

3072:fV1rnlzPUkCuW3zykixxTakHhY6pd23LaXfR6MnJnmjF:NVCjmWGplBRmjF

Score

N/A

Malware Config

Signatures

Files

fc1b0a099146e9839ea978deb2fa554ab434c183a47e414c684f6209fc6962c3
.exe windows x86

7d5f9021db6f51e9d18a7a159a720cc1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
VirtualAlloc
VirtualProtect
GetProcAddress
GetModuleHandleA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetLastError
VirtualLock
VirtualFreeEx
GetTickCount
GetExitCodeThread
VirtualFree
ResetEvent
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
HeapSize
GetEnvironmentStrings
VirtualAllocEx
TerminateThread
VirtualQuery
InterlockedExchange
RtlUnwind
GetCPInfo
GetOEMCP
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapAlloc
HeapReAlloc
GetACP
GetSystemInfo

user32

LoadCursorA
InSendMessage
GetDesktopWindow
IsWindowUnicode
GetDC
IsIconic
GetCursorPos
SetCursorPos
GetWindowRect
IsWindowVisible

gdi32

GetPixel
PatBlt

psapi

GetModuleBaseNameA

msvfw32

DrawDibSetPalette
DrawDibEnd

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d5f9021db6f51e9d18a7a159a720cc1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

psapi

msvfw32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 160KB - Virtual size: 224KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 160KB - Virtual size: 224KB