1b8ac9a8376cddfaa8b09984fa0eb23b7a83cb6ef7d3151c2511460349ab093d

Sharing

Copy URL Twitter E-mail

General

Target

1b8ac9a8376cddfaa8b09984fa0eb23b7a83cb6ef7d3151c2511460349ab093d
Size

284KB
MD5

93e573aaec49129f0e62abc1cb53429e
SHA1

83fdc864e5c9b08438333a3ee54012e47c9abc95
SHA256

1b8ac9a8376cddfaa8b09984fa0eb23b7a83cb6ef7d3151c2511460349ab093d
SHA512

b1249ef425eb38f80e4a47d1fb73f8d4e7b34a6f88056004e474d27c292ac1039b2f06b64e797c211894c0b4176e60a6f182f81f888935cfb770509becf97566
SSDEEP

3072:BHQuRB/wXicGJfi4fW1TVYcJkoUwEDMvzztkxC7D7cHzj/zjrn5agbEGipFfXoSC:BLHIipkTGzDMLzRcT3n53i3fX4vAgbEO

Score

N/A

Malware Config

Signatures

Files

1b8ac9a8376cddfaa8b09984fa0eb23b7a83cb6ef7d3151c2511460349ab093d
.exe windows x86

9a3b4153d26709af88385f98e53898fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
GetShortPathNameA
MoveFileExA
GetSystemDirectoryA
RemoveDirectoryA
FindResourceA
WritePrivateProfileStringA
FreeLibrary
CreateProcessA
GetProcAddress
LoadLibraryA
LoadResource
LockResource
FindFirstFileA
FindClose
lstrcpyA
lstrcatA
GetCurrentDirectoryA
Sleep
CopyFileA
CreateDirectoryA
GetStartupInfoA
GetModuleHandleA
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetCPInfo
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
CreateFileA
SetFilePointer
SetStdHandle
GetFileType
GetStdHandle
SetHandleCount
ReadFile
SetEndOfFile
GetWindowsDirectoryA
GetLastError
DeleteFileA
RtlUnwind
HeapAlloc
HeapFree
HeapReAlloc
GetFileAttributesA
SetFileAttributesA
MoveFileA
ExitProcess
TerminateProcess
GetCurrentProcess
GetLocalTime
GetEnvironmentStringsW
VirtualAlloc
GetCommandLineA
GetVersion
CloseHandle
WriteFile
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
IsBadWritePtr
FlushFileBuffers
WideCharToMultiByte
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings

user32

EndDialog
SetWindowLongA
GetWindowLongA
DlgDirSelectExA
DialogBoxParamA
GetActiveWindow
GetDlgItemTextA
DlgDirListA
SetCursor
LoadCursorA
MessageBoxA
LoadIconA
SendMessageA
LoadStringA
CheckDlgButton
GetDlgItem
EnableWindow
SetDlgItemTextA

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegEnumValueA
RegDeleteValueA

shell32

FindExecutableA
ShellExecuteA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9a3b4153d26709af88385f98e53898fb

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

version

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 16KB

.rsrc Size: 208KB - Virtual size: 208KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 16KB

.rsrc
Size: 208KB - Virtual size: 208KB