ba4dcd245c65b057a7e510d4adaa36719ec9483ffdaadac339630f6d2fc4db7f

General

Target

ba4dcd245c65b057a7e510d4adaa36719ec9483ffdaadac339630f6d2fc4db7f
Size

602KB
MD5

aa7c54a7d1ed5832ed538397d3b68587
SHA1

493db89d9b4d1ea62222b5b47eea95e0e479062e
SHA256

ba4dcd245c65b057a7e510d4adaa36719ec9483ffdaadac339630f6d2fc4db7f
SHA512

0bb33026229b0c9ff84caa5048cba1a7c00b12aea585af2ad2f0ab10109e0c954dfe647dda88748469286873d35d8b3b91b550b7c6beeffad8390e081cf52072
SSDEEP

12288:grXwmHa5nnnnnZXJjuQaNscRiLfkPky34E8AJivdm:UHaZyQ5Ii7kPNP8AJivA

Score

N/A

Malware Config

Signatures

Files

ba4dcd245c65b057a7e510d4adaa36719ec9483ffdaadac339630f6d2fc4db7f
.exe windows x86

738d550d1d6d08f3d20db168246f0d3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_APPCONTAINER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetCursorPos
LoadCursorA
SetFocus
IsCharLowerW
LoadImageA
DialogBoxParamA
GetWindowTextA
CharToOemA
PostMessageA
wsprintfA
DrawIcon
GetCaretPos
IsWindow
GetMessageA
IsDialogMessageA
PeekMessageA

kernel32

GetLocalTime
GetTickCount
GetStringTypeA
GetStdHandle
GetProcAddress
GetShortPathNameA
GetLogicalDrives
GetConsoleTitleW
lstrcmpiA
DeviceIoControl
CreateNamedPipeW
CloseHandle
CompareStringA
OpenMutexA
FindResourceA
lstrcpynA
lstrcmpiA
CreateSemaphoreA
CreateEventW
TlsGetValue
GetLastError
GetDriveTypeW
GetProcessHeap
GetFileType
GetModuleHandleA
ResetEvent
GetEnvironmentVariableW
SetCurrentDirectoryA
InterlockedDecrement
SetStdHandle
CopyFileA
QueryDosDeviceA
GetCurrentProcess
GetCurrentDirectoryW
GetAtomNameA
VirtualQuery
SetFileAttributesA
GetSystemInfo
GetBinaryTypeW

authz

AuthzFreeAuditEvent
AuthzInitializeContextFromSid
AuthzFreeContext
AuthzAddSidsToContext

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 560KB - Virtual size: 776KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

738d550d1d6d08f3d20db168246f0d3a

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

authz

Sections

.text Size: 34KB - Virtual size: 33KB

.data Size: 3KB - Virtual size: 6KB

.rsrc Size: 560KB - Virtual size: 776KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 34KB - Virtual size: 33KB

.data
Size: 3KB - Virtual size: 6KB

.rsrc
Size: 560KB - Virtual size: 776KB

.reloc
Size: 4KB - Virtual size: 4KB