b816e12a4f6e46007e87105503266b6f6c30ffa14322815a61f17eb9f77ae93a

General

Target

b816e12a4f6e46007e87105503266b6f6c30ffa14322815a61f17eb9f77ae93a
Size

228KB
MD5

c27f540e3c01e1377130e93e3dea87c5
SHA1

7840fb7ddf6c626f7e677180a27b77de1b0c5b49
SHA256

b816e12a4f6e46007e87105503266b6f6c30ffa14322815a61f17eb9f77ae93a
SHA512

d0291d26ec29d5b0f5dd959b9097712d79fbe34e092ae6c324ca6debd8f0ba73165ae3fb39668bc6307fb60f59606844f8fa07c0018392d5bdfd37c5518dda17
SSDEEP

3072:25jedSZ57g6Wz9rcvQvg18CaWsDyiZtgZp1XOK2FnOqr:cg6upHI182s2yWZ+cqr

Score

N/A

Malware Config

Signatures

Files

b816e12a4f6e46007e87105503266b6f6c30ffa14322815a61f17eb9f77ae93a
.dll windows x86

4e915138c0fd9a887fd14ab4d7164ae1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
CompareStringA
DeleteFileW
lstrcatA
CopyFileA
CopyFileExA
WriteFile
ExitProcess
DeleteFileA
FindClose
GetPriorityClass
OpenFileMappingA
GetCommandLineA
GetCPInfo
lstrcmpA
ReadFile
GetFileTime
GetFileType
OpenFile
GlobalFree
CreateDirectoryA
HeapAlloc

user32

DrawTextA
GetScrollPos
CreateIcon
DrawIcon
DrawTextW
GetCursor
GetScrollInfo
DialogBoxParamA
DialogBoxParamW
IsMenu
CopyIcon
DrawIconEx
CloseWindow
GetWindowTextLengthA
AlignRects
InsertMenuA
GetDC
LoadCursorA
GetDlgItem

advapi32

RegDeleteValueA
RegQueryInfoKeyA
RegQueryValueA
RegOpenKeyW
RegEnumKeyA
RegQueryInfoKeyW
RegCreateKeyExW
RegLoadKeyA
RegEnumKeyW
RegCreateKeyA
RegQueryValueW
RegQueryValueExW
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExA
RegEnumValueA
RegQueryValueExA
RegDeleteKeyW
RegEnumKeyExW
RegEnumKeyExA

Sections

.kgea
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cnbe
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kmbm
Size: 156KB - Virtual size: 524KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nhalo
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e915138c0fd9a887fd14ab4d7164ae1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.kgea Size: 32KB - Virtual size: 32KB

.cnbe Size: 34KB - Virtual size: 34KB

.kmbm Size: 156KB - Virtual size: 524KB

.nhalo Size: 3KB - Virtual size: 3KB

.kgea
Size: 32KB - Virtual size: 32KB

.cnbe
Size: 34KB - Virtual size: 34KB

.kmbm
Size: 156KB - Virtual size: 524KB

.nhalo
Size: 3KB - Virtual size: 3KB