95a57c60f7ce2fd3a0e271761acdfd38ff72e313276d81011303153c8f26c3d1

General

Target

95a57c60f7ce2fd3a0e271761acdfd38ff72e313276d81011303153c8f26c3d1
Size

298KB
MD5

ce04810a989a9e1a328e26e2a9981d8d
SHA1

bb9f3bba3c22260a06463d9550d9d52c81cbbf1a
SHA256

95a57c60f7ce2fd3a0e271761acdfd38ff72e313276d81011303153c8f26c3d1
SHA512

1820b6424e9d3e81e3c0845ad808a7b1ac3bfcbb26d3f06a08e10e5281c72854019278cdb7f7dbd1781805ff01eedd3118b49e11a38aa6eac0bfbe8cba7204f2
SSDEEP

3072:htnIk4G6l7JBuOONOs6rgHc5VcEFFLaD2cfUsTiyuy6iu95KCJQwvNy3eGy6mn:htIkn8JBuKs6Fc2ZaDMVyhA5NJkuGvo

Score

N/A

Malware Config

Signatures

Files

95a57c60f7ce2fd3a0e271761acdfd38ff72e313276d81011303153c8f26c3d1
.exe windows x86

958cd664dcd3198e004a1b06c05d801b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetOEMCP
GetCurrentThread
CloseHandle
CreateEventA
DeviceIoControl
DuplicateHandle
ExitProcess
FormatMessageA
GetCommConfig
VirtualAlloc
GetCurrentProcess
GetLastError
GetModuleHandleA
GetOverlappedResult
GetTickCount
LocalFree
OpenProcess
WaitForSingleObject
lstrcpyA
lstrlenA
GetStartupInfoA
GetProcessHeap
GetCommandLineA
ReadFile

user32

DestroyWindow
DestroyIcon
GetDC
GetDlgItem
GetMessageA
GetWindowRect
GetWindowTextA
IsDialogMessageA
KillTimer
LoadBitmapA
LoadImageA
LoadStringA
PostQuitMessage
RegisterClassA
ReleaseDC
ScreenToClient
SendDlgItemMessageA
SendMessageA
SetDlgItemTextA
SetForegroundWindow
SetTimer
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage
UnregisterClassA
wsprintfA
DefWindowProcA
CreateDialogParamA
LoadIconW
LoadIconA
LoadCursorA
DispatchMessageA

gdi32

GetStockObject

advapi32

RegOpenKeyExA

shell32

Shell_NotifyIconA

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

958cd664dcd3198e004a1b06c05d801b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 43KB - Virtual size: 43KB

.data Size: 252KB - Virtual size: 252KB

.data2 Size: 512B - Virtual size: 200B

.rsrc Size: 1024B - Virtual size: 776B

.text
Size: 43KB - Virtual size: 43KB

.data
Size: 252KB - Virtual size: 252KB

.data2
Size: 512B - Virtual size: 200B

.rsrc
Size: 1024B - Virtual size: 776B