73f88ed05bb4cd24f3a302e2956e1d39f8176538a8e5590c03e9a006c8422901

General

Target

73f88ed05bb4cd24f3a302e2956e1d39f8176538a8e5590c03e9a006c8422901
Size

288KB
MD5

bfcd452a8cb47f957aefbecedbcfef64
SHA1

e6673bb52c4d52614c08648cb64f279f88b931a2
SHA256

73f88ed05bb4cd24f3a302e2956e1d39f8176538a8e5590c03e9a006c8422901
SHA512

b501786634dd12f7351042bf7bd4b7d39fe8927ac5db1cd55867b6aaf385ba98a1b985dfdda86634f2e85fa8f7ca148d427a41d5c6b6bf94876f4b6c78182d8f
SSDEEP

6144:owb2TLGF0Z5E08xfhLCChVbUdn9UesBmVpvJnM:oQyLG+ZO0GfgCnQLs0vNM

Score

N/A

Malware Config

Signatures

Files

73f88ed05bb4cd24f3a302e2956e1d39f8176538a8e5590c03e9a006c8422901
.exe windows x86

199bc00443a94919f464772017b39865

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DeferWindowPos
IsChild
AnyPopup
IsWindowVisible
IsDialogMessageA
ShowWindowAsync
SetWindowTextA
AdjustWindowRectEx
MessageBoxA
DispatchMessageA
GetDlgItemInt

advapi32

AdjustTokenPrivileges
RegSaveKeyA
RegSetValueA
RegOpenKeyA
RegisterEventSourceA
RegRestoreKeyA
RegEnumValueA

kernel32

ResetEvent
GetEnvironmentVariableA
OpenSemaphoreA
LocalHandle
FreeEnvironmentStringsA
VirtualAlloc
LocalReAlloc
ReleaseMutex
GetCommandLineA
LCMapStringA
GetPrivateProfileSectionNamesA
HeapValidate
HeapAlloc
HeapLock
VirtualFreeEx
GlobalReAlloc
GlobalUnlock
EnterCriticalSection
IsBadCodePtr
HeapDestroy
GetOverlappedResult
GetDateFormatA
GetUserDefaultLangID
CompareStringA
WaitForMultipleObjects
GetProfileSectionA
WriteProfileStringA
WritePrivateProfileSectionA
GetPrivateProfileSectionA
GetStartupInfoA
GetModuleHandleA
GetProcAddress
GetTickCount
CreateSemaphoreA

winscard

SCardStatusA

msvcrt

_exit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_pctype
_isctype
__mb_cur_max
iswctype
exit
_XcptFilter
_controlfp

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 265KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

199bc00443a94919f464772017b39865

Headers

File Characteristics

Imports

user32

advapi32

kernel32

winscard

msvcrt

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 265KB - Virtual size: 264KB

.data Size: 512B - Virtual size: 317KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 265KB - Virtual size: 264KB

.data
Size: 512B - Virtual size: 317KB

.rsrc
Size: 17KB - Virtual size: 17KB