e0aa05ce9584c76e781ddd057c0b6da79c7755b09bdb5cb12400504117492bab

General

Target

e0aa05ce9584c76e781ddd057c0b6da79c7755b09bdb5cb12400504117492bab
Size

799KB
MD5

327dea4cf9c53cff24390408e56fb11e
SHA1

2e81367b39b0e9e3e0d82e47b884bd028577a103
SHA256

e0aa05ce9584c76e781ddd057c0b6da79c7755b09bdb5cb12400504117492bab
SHA512

72e7ab50692855a60c3c6ac9f86548bdb491ac8930357f78fc3665424b3a15a54feba61a2ce907b2cfc081044f573d9f0b8b3d2efbc690b520d1f16a2679d442
SSDEEP

24576:WLv2P0tFKr0k+bdF0TNCKmwVyiv7oH9xgo/FGU3:ytFKx+kNNm24Tfz3

Score

N/A

Malware Config

Signatures

Files

e0aa05ce9584c76e781ddd057c0b6da79c7755b09bdb5cb12400504117492bab
.exe windows x86

0645dacb2cee37a79a358f01ecb1595d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetFocus
GetWindow
ReleaseCapture
KillTimer
DefWindowProcA
SetWindowPos
IsWindow
ScreenToClient
CallWindowProcA
PeekMessageA
GetSysColor
ReleaseDC
GetDlgItem
BeginPaint
MessageBoxA
SetForegroundWindow
DestroyWindow

advapi32

RegOpenKeyExA
RegDeleteValueA
RegQueryValueExA
RegCreateKeyExA

kernel32

GetEnvironmentStringsW
GetVersionExA
GlobalUnlock
GetModuleFileNameA
GetFileAttributesW
FreeEnvironmentStringsA
GetOEMCP
GetStartupInfoA
GetEnvironmentStrings
GetFileSize
UnhandledExceptionFilter
GetProcAddress
TlsFree
WaitForSingleObject
GetFileAttributesA
lstrlenA
DeleteCriticalSection
GetFileType
GetTickCount
GetCurrentProcessId
GetCurrentThreadId
GetCommandLineA
GetModuleHandleA
GetCurrentThread
GetLastError
ExitProcess
GetVersion
HeapAlloc
GetProcessHeap
LeaveCriticalSection
WriteConsoleW
VirtualAlloc
SetEndOfFile
Sleep
FindClose
VirtualFree
SetLastError
LoadResource
InitializeCriticalSection
WriteConsoleA
CreateEventW
TerminateProcess
LocalFree
GetModuleHandleW
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
CloseHandle
ReadFile
GetStringTypeA
GetCPInfo
CompareStringA

Sections

.text
Size: 772KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0645dacb2cee37a79a358f01ecb1595d

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 772KB - Virtual size: 1.1MB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 11KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 772KB - Virtual size: 1.1MB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 10KB - Virtual size: 9KB