8f85c3bdc7c5956cd261470d269633871ffc66594ba4793d1894ed6ed1492cbe

General

Target

8f85c3bdc7c5956cd261470d269633871ffc66594ba4793d1894ed6ed1492cbe
Size

144KB
MD5

122ac5fd9fe12670d9e53ac3b6b03c4e
SHA1

64367399d307a7ed0f2b8ac4850e63a6d5b38ea4
SHA256

8f85c3bdc7c5956cd261470d269633871ffc66594ba4793d1894ed6ed1492cbe
SHA512

c15ad529e5413f10ae7f8d3ab1597afd00ec28e07b01a12d0049e52909d6d3153d83b472185fcb0c96ccb2ede2a05081f3a5a0d4ea90e013821fb2552de332d8
SSDEEP

3072:gdqVU6foKm8LzRv3pRhEay4+xjQW0zbFHuajPmUUBahScueuLO:PUGldEay4+xraLYuuLO

Score

N/A

Malware Config

Signatures

Files

8f85c3bdc7c5956cd261470d269633871ffc66594ba4793d1894ed6ed1492cbe
.exe windows x86

7ba08d23f345dfe2c814bc3bc45b0f46

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
Sleep
GetACP
lstrcpyA
GetACP
GetFileAttributesA
GetACP
GetConsoleCP
GetACP
GetCPInfo
GetACP
GetStringTypeW
GetACP
WideCharToMultiByte
GetACP
lstrcmpA
GetACP
GlobalFree
lstrcatA
GetModuleHandleA
GetModuleFileNameA
ExitProcess
WideCharToMultiByte
lstrcpynA
GetStringTypeA
lstrcmpA
DeleteFileA
GlobalAlloc
GetFileAttributesA
Sleep
GetLocalTime
GetStringTypeW
GetConsoleCP
GetFileType
GetFileSize
GetCPInfo
lstrcmpiA
FreeLibrary
GetStringTypeA
GlobalFree
HeapFree
GetStringTypeW
WideCharToMultiByte
GetStdHandle
FreeLibrary
DeleteFileA
GetLastError
GetLocalTime
GetCommandLineA
GlobalAlloc
GetFileSize
lstrlenA
lstrcpynA
GetConsoleCP
ExitProcess
Sleep
GetModuleHandleA

user32

CopyIcon
AppendMenuW
GetWindowTextLengthA
DrawTextA
GetCursor
DialogBoxParamW
AlignRects
GetDC
EndDialog
BlockInput
InsertMenuA
DrawIcon
DrawTextW
LoadMenuA
CopyImage
CloseWindow
GetWindowTextA
CopyRect
GetMenu

advapi32

RegEnumValueW
RegCreateKeyExA
RegOpenKeyA
RegQueryValueA
RegCreateKeyExW
RegEnumKeyA
RegEnumValueA
RegLoadKeyW
RegQueryValueW
RegQueryInfoKeyA
RegLoadKeyA
RegGetKeySecurity
RegEnumKeyExW
RegOpenKeyW
RegQueryValueExA
RegQueryValueExW
RegReplaceKeyA
RegDeleteKeyW
RegEnumKeyExA

Sections

.tedt
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdaaa
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edada
Size: 6KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ

.rsac
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ba08d23f345dfe2c814bc3bc45b0f46

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.tedt Size: 19KB - Virtual size: 18KB

.rdaaa Size: 105KB - Virtual size: 105KB

.edada Size: 6KB - Virtual size: 135KB

.bss Size: - Virtual size: 3KB

.rsac Size: 9KB - Virtual size: 8KB

.tedt
Size: 19KB - Virtual size: 18KB

.rdaaa
Size: 105KB - Virtual size: 105KB

.edada
Size: 6KB - Virtual size: 135KB

.bss
Size: - Virtual size: 3KB

.rsac
Size: 9KB - Virtual size: 8KB