05b26b2f1bba7bc4d94160438642cac38226496e2203629e5c83f4935bc5c57f

General

Target

05b26b2f1bba7bc4d94160438642cac38226496e2203629e5c83f4935bc5c57f
Size

572KB
MD5

93ea6be1f0e01bb7e2cb23e2aea59e70
SHA1

8d73666218bab859bc8556c7b446a1e398f2c770
SHA256

05b26b2f1bba7bc4d94160438642cac38226496e2203629e5c83f4935bc5c57f
SHA512

a6ae0478902c6f1b8b4155b8ec7ebb50b51681cca73f98f214a74c33a30abbce682d2b2085442a12438d83bb05ef2b1123589d911a5b7d847bddd6850ceee569
SSDEEP

12288:noW+JELZ6V1+Xy6gEopV4OwU3ng48K89ef1LvVenjp5Fpw3hQJBu0:nR+2YV1djf403nF49efdsjp5d

Score

N/A

Malware Config

Signatures

Files

05b26b2f1bba7bc4d94160438642cac38226496e2203629e5c83f4935bc5c57f
.dll windows x86

c3ecdba2523c459769958abb5608149c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fread
_CIpow
sscanf
strcmp
memset
fopen
_stricmp
memcpy
strcpy
realloc
getenv
fwrite
strtok
printf
strncmp
_assert
_iob
free
atol
malloc
strstr
exit
sprintf
fclose
rand
_ftol
abort
fgets
memmove
fprintf
atoi
fseek
sqrt
calloc
bsearch
ftell

user32

ReleaseDC
GetDC
wsprintfA
UnhookWindowsHookEx
WindowFromDC
GetParent
GetClientRect
GetWindowRect
GetWindowThreadProcessId
WINNLSGetEnableStatus
PrintWindow
MessageBoxA

kernel32

TlsAlloc
GetLastError
TlsFree
GetModuleFileNameA
CreateFileA
TlsSetValue
VirtualAlloc
GlobalFree
GlobalSize
QueryPerformanceCounter
GetModuleHandleA
VirtualFree
LoadLibraryA
FreeLibrary
Sleep
GetCurrentThread
TlsGetValue
DeleteCriticalSection
InitializeCriticalSection
GetStartupInfoA
SetLastError
LeaveCriticalSection
GetVersionExA
GlobalAlloc
FlushConsoleInputBuffer
IsBadReadPtr
SetThreadPriority
GetTickCount
GetCurrentThreadId
GetProcAddress
GetDateFormatA
EnterCriticalSection

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Exports

Exports

_setsig
convert_to_rfc1123
set_read_fn
write_init_3

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3ecdba2523c459769958abb5608149c

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 176KB - Virtual size: 174KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 112KB - Virtual size: 112KB

.rsrc Size: 204KB - Virtual size: 203KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 176KB - Virtual size: 174KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 204KB - Virtual size: 203KB

.reloc
Size: 8KB - Virtual size: 7KB