7162b3a21d72c5800b8bf8f580580ef3e5536237a8f6a2ae0653b8f09992b5a5

Sharing

Copy URL Twitter E-mail

General

Target

7162b3a21d72c5800b8bf8f580580ef3e5536237a8f6a2ae0653b8f09992b5a5
Size

176KB
MD5

250d2415f1771d4b65b66422ab127dd0
SHA1

9c57a1f929e140fdcb589845e284462ab215144d
SHA256

7162b3a21d72c5800b8bf8f580580ef3e5536237a8f6a2ae0653b8f09992b5a5
SHA512

56a2147c99e30a062e38ab7e331753de5a24da60e51bdc85bff9dc7570574d12c2d94c41b63cb1505ed4ec13e4b01c0d3758f449bba5dbf7c636a66d0378737c
SSDEEP

3072:eRVbFZBpiJrsZnWRLlxGs3kI/nnYY0WctHRlcnxPafLXrUSEJH/86DVJAknH6k5c:UbF3pSwmLlxGs/nnY5EV+TrPE3TH6p

Score

N/A

Malware Config

Signatures

Files

7162b3a21d72c5800b8bf8f580580ef3e5536237a8f6a2ae0653b8f09992b5a5
.exe windows x86

fe12f55de346bfe61b59c25da77bbc23

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
lstrcatA
GetModuleFileNameA
GetFileAttributesA
lstrcpynA
lstrlenA
lstrcpyA
FreeLibrary
GetProcAddress
LoadLibraryW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsFree
SetLastError
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsAlloc
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
HeapAlloc
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
LoadLibraryA
GetACP
GetOEMCP
InitializeCriticalSection
VirtualAlloc
HeapReAlloc
VirtualProtect
GetSystemInfo
VirtualQuery
LCMapStringA
LCMapStringW
RtlUnwind
GetLocaleInfoW
GetStartupInfoW
CreateFileW
GetCurrentThread

user32

RegisterWindowMessageA
WinHelpW
WinHelpA
SetWindowTextW
SetWindowTextA
FindWindowW
FindWindowA
AttachThreadInput
DispatchMessageA
TranslateMessage
IsDialogMessageA
PeekMessageA
MsgWaitForMultipleObjects
PostMessageA
GetMessageA
wsprintfW
DestroyWindow
PostQuitMessage
SetWindowLongA
GetWindowLongA
LoadCursorA
LoadIconA
DefDlgProcA
DefDlgProcW
SendMessageA
SetFocus
EnableWindow
GetFocus
IsWindowEnabled
GetDlgItem
UpdateWindow
SetForegroundWindow
ShowWindow
SystemParametersInfoA
GetClientRect
GetSystemMetrics
SetWindowPos
MapWindowPoints
GetWindowRect
DrawAnimatedRects
EndPaint
DrawIcon
BeginPaint
InvalidateRect
SetTimer
KillTimer
IsWindowVisible
DrawFocusRect
FillRect
GetSysColor
ReleaseDC
SetRect
GetDC
RedrawWindow
CallWindowProcW
SetCursor
GetParent
GetUserObjectInformationW
GetThreadDesktop
GetProcessWindowStation
DefWindowProcA
DefWindowProcW
LoadStringA
LoadStringW
FindWindowExW
RegisterWindowMessageW
CreateWindowExA
CreateWindowExW
CreateDialogParamA
CreateDialogParamW
RegisterClassA
RegisterClassW
MessageBoxA
MessageBoxW
SendMessageW
DrawTextA
DrawTextW
FindWindowExA

advapi32

RegOpenKeyA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe12f55de346bfe61b59c25da77bbc23

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 512B - Virtual size: 4B

.data Size: 168KB - Virtual size: 168KB

.rsrc Size: 1024B - Virtual size: 576B

.reloc Size: 1024B - Virtual size: 172KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 512B - Virtual size: 4B

.data
Size: 168KB - Virtual size: 168KB

.rsrc
Size: 1024B - Virtual size: 576B

.reloc
Size: 1024B - Virtual size: 172KB