94264deddd0b3b07661785911f3df9c21cf9490ebeaf269b3b38fc0a58fdaafa

Sharing

Copy URL Twitter E-mail

General

Target

94264deddd0b3b07661785911f3df9c21cf9490ebeaf269b3b38fc0a58fdaafa
Size

42KB
MD5

d9150a12ff329aa4905a8683e23b10c8
SHA1

014ea525b8956c4b2a6130235a3eaaae90045a00
SHA256

94264deddd0b3b07661785911f3df9c21cf9490ebeaf269b3b38fc0a58fdaafa
SHA512

1d075ad1e9026fb29eba6afecbeaf8d287588afa53c109d0d910b998fd3269eaf4f6cfae738da35a8bcbd767e64a2a1493650440f3a957454e9e66cd70b0bcbf
SSDEEP

768:SXQFeS2G5QsCMh7JzRcnxGEevcu0tjAl7FUvTnHAceJW:SnS2UNFuRKlGAceQ

Score

N/A

Malware Config

Signatures

Files

94264deddd0b3b07661785911f3df9c21cf9490ebeaf269b3b38fc0a58fdaafa
.exe windows x86

eacd6c96909657684e4051ce9536fa8b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalDeleteAtom
GetCPInfo
FreeEnvironmentStringsA
LocalReAlloc
LocalAlloc
ReadFile
ExpandEnvironmentStringsW
GetUserDefaultLCID
GetCommandLineA
lstrcmpA
GetShortPathNameA
GetFileTime
GetFileInformationByHandle
OutputDebugStringA
LoadLibraryW
SetEvent
TlsAlloc
GetComputerNameW
ResetEvent
CreateDirectoryW
FreeResource
GetModuleHandleW
GetTempFileNameA
GetStartupInfoA
SetConsoleCtrlHandler
SetFileAttributesW
HeapDestroy
GetLocaleInfoW
GlobalFindAtomW
GlobalAlloc
GetLastError
VirtualQuery

advapi32

RegEnumValueW
RevertToSelf
FreeSid
RegQueryInfoKeyW
RegEnumKeyExA

msvcrt

strchr
memmove
?terminate@@YAXXZ
__p__commode
__set_app_type
isdigit
??_U@YAPAXI@Z
exit
_initterm
_controlfp
__getmainargs

user32

GetClientRect
UpdateWindow
SetRectEmpty
GetScrollInfo
DrawTextA
GetMenuItemCount
GetClassNameW
GetMenu
InvalidateRect
IsWindowEnabled
RegisterWindowMessageW
DefWindowProcW
GetSystemMenu
RedrawWindow
InflateRect
SendDlgItemMessageA
LoadIconA
GetKeyState
SetForegroundWindow

gdi32

GetTextMetricsW
SetWindowOrgEx
ExcludeClipRect
CreateDIBitmap
SetViewportExtEx
GetTextMetricsA
PatBlt
GetDeviceCaps

version

VerQueryValueW

ole32

CLSIDFromString
CoTaskMemFree
ReleaseStgMedium

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eacd6c96909657684e4051ce9536fa8b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

msvcrt

user32

gdi32

version

ole32

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 410B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 410B

.rsrc
Size: 1KB - Virtual size: 1KB