623a3b27abe91ae1797710a55081e4fbc3c7d16eff6170789382bc374fb61e21

General

Target

623a3b27abe91ae1797710a55081e4fbc3c7d16eff6170789382bc374fb61e21
Size

80KB
MD5

544dd60a87e26117f8d1a13be3a195b0
SHA1

bc667881def2d22b46ed5156cb9dc7df3428e4d8
SHA256

623a3b27abe91ae1797710a55081e4fbc3c7d16eff6170789382bc374fb61e21
SHA512

e03e4f2fc8ac32ae96a6aa1c3c9903442bd5a95c56ee3a5495381b19764c74b8887c7f2cbc086bb5e207fc49879bb2ffb1ca21fc35a67a3b3e26255888183a58
SSDEEP

1536:LU8RlayYSNo0FA+x+UA0TwXVu7kynV3cCGloW:LZaINocA+xRAxFudV3KloW

Score

N/A

Malware Config

Signatures

Files

623a3b27abe91ae1797710a55081e4fbc3c7d16eff6170789382bc374fb61e21
.dll windows x86

78ab3a3a261fc3f1c52740c26516d873

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
HeapAlloc
WriteFile
CreateFileW
ExitProcess
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
LoadLibraryA
lstrcmpiA
TlsGetValue
GetDefaultCommConfigA
SetErrorMode
GetSystemTimeAsFileTime
GetVersionExA
LCMapStringW
LCMapStringA
GetProcAddress
TlsAlloc
VirtualAlloc
GetCommandLineA
GetVersion
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapDestroy
HeapCreate
HeapFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
RtlUnwind

shlwapi

StrStrIA

advapi32

RegCreateKeyExA
RegCloseKey

Exports

Exports

SetUserIntarfaceA
bp345676

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78ab3a3a261fc3f1c52740c26516d873

Headers

File Characteristics

Imports

kernel32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 15KB

.rsrc Size: 8KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 15KB

.rsrc
Size: 8KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 1KB