df1a45f8e68c500a3db64b2df49f097f1c307177934e3dc2fdf056260a9a4771

General

Target

df1a45f8e68c500a3db64b2df49f097f1c307177934e3dc2fdf056260a9a4771
Size

223KB
MD5

9764029aa2897cecfcca048d87c53243
SHA1

6b8b6524d8233daf7a63408c6abb33b3d6a1dcdf
SHA256

df1a45f8e68c500a3db64b2df49f097f1c307177934e3dc2fdf056260a9a4771
SHA512

5089533dfe644b70658be1c096d47bb7f6471754be4c64302f021ffc42fd84a4d71e382ea383ea6b51aecd1fbc39bbd8ba9cf40e79f2b1695d5f394d33c413d7
SSDEEP

3072:Aum3EI3hxgpIyxpuoOZ6s3gzoAkPQ2+sjRUfleIu7PXSLT1Z5L0QmZFeDTf4YMnJ:1mdxiPuxx7pYERUKCvl0Q+Fmj4Y8gXe

Score

N/A

Malware Config

Signatures

Files

df1a45f8e68c500a3db64b2df49f097f1c307177934e3dc2fdf056260a9a4771
.exe windows x86

625a7cbd3ad9e89dd9dd7276aab7140c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

CommandLineToArgvW
Shell_NotifyIconA

gdi32

SetBkMode
MaskBlt
SelectClipRgn
RectVisible
GetCurrentPositionEx
CreateFontIndirectA
GetSystemPaletteEntries
CreateCompatibleDC
CreateDIBSection
BitBlt
CreateDIBitmap
GetClipBox
GetTextMetricsA
GetEnhMetaFileBits
SetBkColor
GetPaletteEntries
SetWindowOrgEx
GetDCOrgEx
GetBrushOrgEx
GetDeviceCaps
LineTo
CreateHalftonePalette
SetROP2
GetWindowOrgEx

msvcrt

_initterm
wcschr
fwprintf
__wgetmainargs
_cexit
exit
_adjust_fdiv
__p__fmode
wcscmp
__p__commode
_controlfp
wcsrchr
_c_exit
_exit
_except_handler3
wcscat
_wcsicmp
_XcptFilter
_wcsnicmp
__set_app_type
fclose

advapi32

RegQueryValueA
RegOpenKeyA
RegCloseKey

kernel32

lstrlenW
FileTimeToSystemTime
lstrcpynW
ExitProcess
CloseHandle
GetTickCount
QueryPerformanceCounter
FormatMessageW
VirtualFree
GetProcAddress
GetCurrentProcess
GetTempPathW
GetSystemTimeAsFileTime
LocalFree
GetCommandLineA
GetFullPathNameW
VirtualAlloc
FreeLibrary
GetLastError
lstrcpyW
GetModuleHandleA
UnhandledExceptionFilter

Sections

.text
Size: 179KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

625a7cbd3ad9e89dd9dd7276aab7140c

Headers

File Characteristics

Imports

shell32

gdi32

msvcrt

advapi32

kernel32

Sections

.text Size: 179KB - Virtual size: 178KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 11KB - Virtual size: 11KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 179KB - Virtual size: 178KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 21KB - Virtual size: 20KB