fcc568a45b82e03f4575ecf1d79f6557332320bac56cecb91dab9558a524a69e

General

Target

fcc568a45b82e03f4575ecf1d79f6557332320bac56cecb91dab9558a524a69e
Size

38KB
MD5

6cf8765ef38384f7570c09a828607e2f
SHA1

254ed0ab8e9e66b3415116be5e415b09f28cfab6
SHA256

fcc568a45b82e03f4575ecf1d79f6557332320bac56cecb91dab9558a524a69e
SHA512

68bc38d7dad56c0f69de33d7725aa8350df68b66b536f0b0680dd9acf73fbe39155a617d16511d34f61f53a590da9ba757df6904b007f90aefa91ad530c186a7
SSDEEP

768:A+G99uUX3ryNwQ9KrtcL3Js0Ul1Lud1kU234QfN:699HX3ryyYjJBUfLweU0l

Score

N/A

Malware Config

Signatures

Files

fcc568a45b82e03f4575ecf1d79f6557332320bac56cecb91dab9558a524a69e
.exe windows x86

dbd2ae6ea1566eb9317bbf638a48729e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

TransparentBlt
GradientFill
DllInitialize

certcli

CACloseCertType
CADeleteCA
CAEnumFirstCA
CACloseCA

user32

LoadImageA
PeekMessageA
wsprintfA
DialogBoxParamA
DispatchMessageA
CreateWindowExA
CharToOemA
GetCaretPos
IsWindow
LoadCursorA
GetWindowLongA
GetWindowTextA
SetCursorPos

kernel32

DeviceIoControl
ReadConsoleA
GetAtomNameA
GetBinaryTypeA
GetCurrentProcess
WriteConsoleA
GetGeoInfoA
GetNumberFormatW
GetFullPathNameA
CreateDirectoryA
GetConsoleAliasW
SetEnvironmentVariableW
ReadFile
GetProcessTimes
WaitForSingleObject
GetProcAddress
CompareStringA
GetTickCount
FormatMessageA
GetSystemInfo
GetModuleHandleA
GetConsoleTitleA
GetProcessHeap
CloseHandle
CreateNamedPipeA
GetCurrentDirectoryA
GetStringTypeA
SetFilePointer
lstrcpynW

mprapi

MprAdminDeviceEnum
MprInfoBlockFind
MprAdminConnectionEnum

advapi32

RegFlushKey
CreateProcessAsUserA
IsValidAcl
RegCreateKeyA
RegEnumKeyA
ClearEventLogA
RegQueryValueA
InitializeSid
IsValidSecurityDescriptor
IsValidSid
RegSaveKeyA
RegCloseKey

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dbd2ae6ea1566eb9317bbf638a48729e

Headers

DLL Characteristics

File Characteristics

Imports

msimg32

certcli

user32

kernel32

mprapi

advapi32

Sections

.text Size: 10KB - Virtual size: 10KB

.data Size: 512B - Virtual size: 168B

.rsrc Size: 26KB - Virtual size: 25KB

.text
Size: 10KB - Virtual size: 10KB

.data
Size: 512B - Virtual size: 168B

.rsrc
Size: 26KB - Virtual size: 25KB