25808f5afa8c93d477a954e4a0444b63fbaccac72a56dcd87d252df2606c0e19

General

Target

25808f5afa8c93d477a954e4a0444b63fbaccac72a56dcd87d252df2606c0e19
Size

35KB
MD5

9429badbe4e0edfd3873b68334cb5596
SHA1

429c9aaeabe25b36aa6391e0524ada8c0f43447a
SHA256

25808f5afa8c93d477a954e4a0444b63fbaccac72a56dcd87d252df2606c0e19
SHA512

8c686174a43068a6327418fec452f4e5daad908ab85203f9742d1420af1a2ad2451b0c3cb85239a5a2dea80699ed79810d6de5ceca2c1e71b92546587fabbc25
SSDEEP

192:gglxIQwTcH5EY2FI4itwlwcwXSS7bww6I3iSV5478pDWtu0Sg02ggggggggggggf:r/bDtkVyHwwViSAopxLyca0A/VarOx

Score

N/A

Malware Config

Signatures

Files

25808f5afa8c93d477a954e4a0444b63fbaccac72a56dcd87d252df2606c0e19
.exe windows x86

6e10955dc6e911423de36e8d2e7c8cbf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDiskFreeSpaceA
GetACP
GetCurrentThread
GetDriveTypeA
GetEnvironmentStringsA
GetPrivateProfileSectionA
IsValidCodePage
GetProcAddress
SearchPathA
CreateFileA
GetDateFormatW
LZClose
ExitThread

shell32

SHGetSpecialFolderPathA

lz32

LZRead
LZInit

esent

JetGetCounter

duser

AddGadgetMessageHandler
AttachWndProcA
AttachWndProcW
AutoTrace
SetGadgetRotation
BuildAnimation
BuildDropTarget
BuildInterpolation
CreateAction
CreateGadget
SetGadgetScale
DUserBuildGadget
DUserCastClass
DUserCastDirect
DUserCastHandle
DUserDeleteGadget
DUserFindClass
DUserGetAlphaPRID
DUserGetGutsData
DUserGetRectPRID
DUserGetRotatePRID
DUserGetScalePRID
DUserInstanceOf
DUserPostEvent
DUserPostMethod
DUserRegisterGuts
DUserRegisterStub
DUserRegisterSuper
DUserSendEvent
DUserSendMethod
DUserStopAnimation

Sections

Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

a
Size: 6KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

b
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.css
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

d
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6e10955dc6e911423de36e8d2e7c8cbf

Headers

File Characteristics

Imports

kernel32

shell32

lz32

esent

duser

Sections

Size: 2KB - Virtual size: 20KB

a Size: 6KB - Virtual size: 82KB

b Size: 21KB - Virtual size: 24KB

.css Size: 2KB - Virtual size: 2KB

d Size: 2KB - Virtual size: 2KB

a
Size: 6KB - Virtual size: 82KB

b
Size: 21KB - Virtual size: 24KB

.css
Size: 2KB - Virtual size: 2KB

d
Size: 2KB - Virtual size: 2KB