a986cb5a2afa858fee54be604baf18d1b1919343663468feced1be044b8a7f58

General

Target

a986cb5a2afa858fee54be604baf18d1b1919343663468feced1be044b8a7f58
Size

640KB
MD5

35b14d1f85aecf247535fae29a70d13a
SHA1

88d336bb4aa01f4d065ae1ce3c2f6626008f79b3
SHA256

a986cb5a2afa858fee54be604baf18d1b1919343663468feced1be044b8a7f58
SHA512

86482a438ffb72514e8465303af39018c491509687b379379bfff4e0a9e1d59e1b72f97eaf40351ec31133a802761952ecf898974c72f7150591f9e798cabd6d
SSDEEP

12288:kinJeqGxyYQn4OTdqC1zdO5MJCf/cpMfTQotYGDLMYQBpZE3wZbj2lvQkhQgfYpJ:kinJeh9IqC1CMa/cKfTQVGvlAZbj2FQJ

Score

N/A

Malware Config

Signatures

Files

a986cb5a2afa858fee54be604baf18d1b1919343663468feced1be044b8a7f58
.exe windows x86

c1815870a3396b549cb2d5628bf1b3c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcessId
GetTickCount
GetCommandLineA
GetModuleHandleA
ExitProcess
HeapAlloc
GetProcessHeap
InterlockedIncrement
GetOEMCP
GetFileSize
VirtualAlloc
LeaveCriticalSection
CreateFileA
FormatMessageA
FindClose
WriteConsoleA
VirtualQuery
FindResourceW
UnmapViewOfFile
GetTimeZoneInformation
ResetEvent
LCMapStringA
LocalFree
FreeLibrary
GetStringTypeW
FindNextFileA
GetSystemTimeAsFileTime
CompareStringA
CreateEventW
WriteFile
SetUnhandledExceptionFilter
GetLastError
SetFilePointer
GetStringTypeA
GetFileAttributesA
WideCharToMultiByte
LoadResource
GetProcAddress
FreeEnvironmentStringsW
HeapSize
MultiByteToWideChar
SetErrorMode
UnhandledExceptionFilter
CreateThread
LockResource
GetConsoleOutputCP
LocalAlloc
GetConsoleMode
SizeofResource
GetModuleFileNameA
GetVersionExA
GetEnvironmentStringsW
GetThreadLocale
HeapDestroy
FindFirstFileW
SetEvent
WaitForSingleObject
GetModuleFileNameW
GetSystemInfo
SetHandleCount
LCMapStringW
EnterCriticalSection
LoadLibraryExW
InitializeCriticalSection
GetVersion
ReadFile
GetCurrentThread

user32

InvalidateRect
GetSubMenu
CallWindowProcA
EndPaint
SetForegroundWindow
PostQuitMessage
TranslateMessage
SetFocus
EnableWindow
UpdateWindow
CreateWindowExA

ole32

CoCreateInstance
CoUninitialize

advapi32

RegDeleteKeyA
RegCreateKeyExA

Sections

.text
Size: 606KB - Virtual size: 928KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1815870a3396b549cb2d5628bf1b3c7

Headers

File Characteristics

Imports

kernel32

user32

ole32

advapi32

Sections

.text Size: 606KB - Virtual size: 928KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 17KB - Virtual size: 17KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 606KB - Virtual size: 928KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 11KB - Virtual size: 10KB