062eba448104c540187b888f2896b84646a98d04cdbf0c7b8565a0acab01e060

General

Target

062eba448104c540187b888f2896b84646a98d04cdbf0c7b8565a0acab01e060
Size

86KB
MD5

45c67246932e779f74cd35371b26abe0
SHA1

34b25efe5d3b53145626a1dbc29f5a49a3936340
SHA256

062eba448104c540187b888f2896b84646a98d04cdbf0c7b8565a0acab01e060
SHA512

16ed69f28091d810c3a9382c12060864cdead8b96010f3d4cc32111241915582c6f9a6e0be79635e744b08dd0a19dcb201741b6db8df70c7a3c803e0685175d7
SSDEEP

768:lUen74dSfL4h4SDhivcnPBvf9/fEeHAGEXGBW3tXupB9ZA1QXNP:lz0I4hJhHPBZLAGdBSk9ZASNP

Score

N/A

Malware Config

Signatures

Files

062eba448104c540187b888f2896b84646a98d04cdbf0c7b8565a0acab01e060
.exe windows x86

573ae5370e869e439b6bf24bb70f45b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedDecrement
SetLastError
SetThreadPriority
ResetEvent
LeaveCriticalSection
InitializeCriticalSection
GetLocalTime
lstrcpynA
OutputDebugStringA
lstrcpyA
GetModuleFileNameA
GetCPInfo
GetLocaleInfoA
VirtualProtect
Sleep
HeapFree
GetStringTypeW
GetStringTypeA
InterlockedExchange
HeapReAlloc
DeleteCriticalSection
GlobalAlloc
GetPrivateProfileStringW
GlobalFree
GetModuleHandleA
GetCommandLineW
WaitForMultipleObjects
GetLocaleInfoW
GetSystemDefaultLCID
SearchPathA
lstrlenA
GetProcessHeap
HeapAlloc
VirtualQuery
DisableThreadLibraryCalls
VirtualFree
VirtualAlloc
SetFilePointer
SetEndOfFile
SetFileTime
MapViewOfFile
MultiByteToWideChar
DeleteFileW
CreateFileA
CloseHandle
DeleteFileA
GetFileSize
UnmapViewOfFile
GetLastError
InterlockedCompareExchange
UnhandledExceptionFilter
QueryPerformanceCounter
TlsFree
WriteFile
lstrcmpiA
GetUserDefaultUILanguage
TlsGetValue

user32

wsprintfW
wsprintfA
CharNextA

advapi32

RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA

msvcrt

puts
_getch
strrchr
free
malloc
exit
setlocale

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

573ae5370e869e439b6bf24bb70f45b0

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

Sections

.text Size: 24KB - Virtual size: 21KB

.idata Size: 4KB - Virtual size: 2KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 16KB - Virtual size: 2.6MB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 24KB - Virtual size: 21KB

.idata
Size: 4KB - Virtual size: 2KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 16KB - Virtual size: 2.6MB

.rsrc
Size: 16KB - Virtual size: 12KB