5475aa2015293402a4371b548366655656b173409944047208debacf32e87172

General

Target

5475aa2015293402a4371b548366655656b173409944047208debacf32e87172
Size

312KB
MD5

b8be79c524f8f2489bbe91037473b390
SHA1

195ec98c95dae266f2d23166d12c44f61c355149
SHA256

5475aa2015293402a4371b548366655656b173409944047208debacf32e87172
SHA512

42c332ff788487b21215f2a73836c890bc70c47ba1a881d6dea58674f1305e24aead1c85e8da97812204ed47bc936f235d27ce634d81be5e9a4b3428d6581a01
SSDEEP

6144:Xa/mNTr5KOlrwX4mxFgiMIHk3AraJ/ViecHJfFmEH38Qp:X+A5KOuXeP3Are/jWfFmc

Score

N/A

Malware Config

Signatures

Files

5475aa2015293402a4371b548366655656b173409944047208debacf32e87172
.dll windows x86

54210096509e47b17b31f1353e416ea7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PrintWindow
GetWindowRect
MessageBoxA
GetWindowThreadProcessId
GetDC
WindowFromDC
wsprintfA
GetParent
ReleaseDC

kernel32

GetCurrentThreadId
IsBadReadPtr
GlobalAlloc
GetModuleHandleA
TlsAlloc
GetModuleFileNameA
SetThreadPriority
SetLastError
EnterCriticalSection
CreateFileA
GlobalSize
GetVersionExA
TlsFree
GetStartupInfoA
QueryPerformanceCounter
GetLastError
VirtualAlloc
VirtualFree
TlsSetValue
LeaveCriticalSection
Sleep
DeleteCriticalSection
GetDateFormatA
GlobalFree
GetProcAddress
LoadLibraryA
GetTickCount
FreeLibrary
InitializeCriticalSection
TlsGetValue

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

msvcrt

strtok
fread
fgets
_ftol
fclose
calloc
free
memcpy
atol
rand
strcpy
bsearch
strstr
ftell
strncmp
memmove
_stricmp
atoi
exit
malloc
sqrt
abort
fwrite
sscanf
_iob
sprintf
_CIpow
memset
getenv
printf
fprintf
strcmp
fopen
fseek
_assert

Exports

Exports

State_Head
Warning
read_init_2
set_cHRM

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54210096509e47b17b31f1353e416ea7

Headers

File Characteristics

Imports

user32

kernel32

advapi32

msvcrt

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 44KB - Virtual size: 44KB

.rsrc Size: 76KB - Virtual size: 75KB

.reloc Size: 12KB - Virtual size: 10KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 44KB - Virtual size: 44KB

.rsrc
Size: 76KB - Virtual size: 75KB

.reloc
Size: 12KB - Virtual size: 10KB