84e820f237b9e0df2e7723e6bb5ecd02d473d70e4ffc07cee61897756cf6ee4f

General

Target

84e820f237b9e0df2e7723e6bb5ecd02d473d70e4ffc07cee61897756cf6ee4f
Size

515KB
MD5

d061cb4426124d85f68be03c6d38f728
SHA1

76b63f83a014765ba94f8ca70ee83554cf7ef0d7
SHA256

84e820f237b9e0df2e7723e6bb5ecd02d473d70e4ffc07cee61897756cf6ee4f
SHA512

d262026f78e34888f2f7af539c266c1751a20109eff6ccd9cf34d491814ac41bd086be710f353cc3d87386d866863dd2bb96dea73f6af4011b150a9030638cfe
SSDEEP

12288:gZkNHS9UOlSyMMT7WxIrXzQWD6BabYY4G:gKNVinPTAIfQYbYY4

Score

N/A

Malware Config

Signatures

Files

84e820f237b9e0df2e7723e6bb5ecd02d473d70e4ffc07cee61897756cf6ee4f
.exe windows x86

70946b6d14aba207285c88797e265197

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClassWord
LoadCursorA
IsWindow
GetClientRect
GetDC
PtInRect
SetShellWindowEx
SendMessageW
LoadBitmapA
IsChild
SetWindowPos
InflateRect
PtInRect
ChangeMenuA
CharLowerA
UnionRect
SubtractRect
TranslateMessage
SetSystemMenu
HideCaret
SetRectEmpty
IntersectRect
GetCaretPos
LoadImageA
FlashWindow
FlashWindowEx
GetAncestor
InsertMenuW
ShowScrollBar
CascadeWindows
ShowCursor
GetWindowDC
GetWindowInfo
GetWindowLongA
GetWindowLongW

icm32

CMCheckColors

dbghelp

SymGetLineNext64
SymGetLinePrev
SymGetLinePrev64
SymGetModuleBase
SymGetModuleBase64
SymGetModuleInfo
SymGetModuleInfo64
SymGetModuleInfoW
SymGetModuleInfoW64

msi

MsiCreateRecord
MsiCreateRecord

kernel32

GetLastError
CreateFileA
GetWindowsDirectoryA
GetTickCount
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VirtualFree
VirtualAlloc
LocalFree
LocalAlloc
GetTickCount
ReadFile
GetVersion
GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
VirtualQuery
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
lstrcpynA
LoadLibraryExA
GetThreadLocale
GetStartupInfoA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLastError
GetCommandLineA
FreeLibrary
FindFirstFileA
FindClose
ExitProcess
ExitThread
CreateThread
WriteFile
OpenThread
OpenWaitableTimerA
OpenWaitableTimerW

esent

JetAddColumn

Sections

.text
Size: 11KB - Virtual size: 15KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 530KB

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 495KB - Virtual size: 500KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

70946b6d14aba207285c88797e265197

Headers

File Characteristics

Imports

user32

icm32

dbghelp

msi

kernel32

esent

Sections

.text Size: 11KB - Virtual size: 15KB

.data Size: 4KB - Virtual size: 530KB

.rsrc Size: 495KB - Virtual size: 500KB

.text
Size: 11KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 530KB

.rsrc
Size: 495KB - Virtual size: 500KB