82cd7b21c047bfbae6b3c187e285618a6741de55064af9c9cd196b0a0d73df1b

General

Target

82cd7b21c047bfbae6b3c187e285618a6741de55064af9c9cd196b0a0d73df1b
Size

179KB
MD5

d704f156ff71155ce0b30b392bd234a1
SHA1

a5fcd7e53dd52c7e2653f4d0a29f622344fa6943
SHA256

82cd7b21c047bfbae6b3c187e285618a6741de55064af9c9cd196b0a0d73df1b
SHA512

dba3fbc18fe0824f94e20fea697892dec0987aecd8f4a4bb21549db2ed92737c82a911d905a275d5a4a980e4a9ee5fbc6c901f026a479484b26df7b3fe067935
SSDEEP

3072:hE49+rlq+cyvKWgJDeNf18R/KpCBBR4BWz/6cK4Fucdg2Ym1vHprVGQwa9qY7uuj:hS8+cXW/NFCiQr6P0zzvJrVZwa9qY7oK

Score

N/A

Malware Config

Signatures

Files

82cd7b21c047bfbae6b3c187e285618a6741de55064af9c9cd196b0a0d73df1b
.exe windows x86

83e40535ec4ef31f767c26805d5e9a84

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameA
FindFirstChangeNotificationW
MultiByteToWideChar
lstrlenW
GetFileAttributesW
FindClose
FindResourceW
GetCurrentDirectoryW
InterlockedIncrement
LoadLibraryW
GetVersionExA
DeleteFileW
GetVersionExW
GlobalSize
SetFileAttributesW
LoadLibraryExW
GetModuleFileNameW
WaitForSingleObject
GetVersion
lstrcpyW
WritePrivateProfileStringW
LoadResource
GetPrivateProfileStringW
lstrcpynW
GetTickCount
GlobalAlloc
EnumResourceTypesA
GetModuleHandleW
lstrcmpW
ResumeThread
LoadLibraryA
GlobalFree
FileTimeToSystemTime
GetProcAddress
GetPrivateProfileIntW
LockResource
FileTimeToLocalFileTime
Sleep
GetLocaleInfoW
IsValidCodePage
WideCharToMultiByte
MulDiv
FindCloseChangeNotification
GetLastError
GlobalUnlock
FindNextChangeNotification
FindFirstFileW
GetCurrentThreadId
InitializeCriticalSection
FreeLibrary
GlobalLock
DeleteCriticalSection
CloseHandle
SetThreadPriority

shell32

SHIsFileAvailableOffline
SHBrowseForFolderA
ShellExecuteExA
SHGetPathFromIDListA
SHGetFolderPathW
ShellExecuteW
ShellExecuteExW
SHGetFileInfoA
CommandLineToArgvW
SHFileOperationW
Shell_NotifyIconA

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83e40535ec4ef31f767c26805d5e9a84

Headers

File Characteristics

Imports

kernel32

shell32

Sections

.text Size: 79KB - Virtual size: 79KB

.rdata Size: 2KB - Virtual size: 149KB

.data Size: 96KB - Virtual size: 96KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 79KB - Virtual size: 79KB

.rdata
Size: 2KB - Virtual size: 149KB

.data
Size: 96KB - Virtual size: 96KB

.rsrc
Size: 512B - Virtual size: 4KB