8bfe39a9d2953907a1034f269632b5ba1045d621dadbd69b6fef8e7d727789fc

General

Target

8bfe39a9d2953907a1034f269632b5ba1045d621dadbd69b6fef8e7d727789fc
Size

106KB
MD5

51846df0f0518d32605343007f6ab4dd
SHA1

4da419438acccd0ee521993ba896710d9332d59d
SHA256

8bfe39a9d2953907a1034f269632b5ba1045d621dadbd69b6fef8e7d727789fc
SHA512

72d1b5f87eb513fbaa69171c138f058dfc8e3be7d708d5bb9f1e7520530566bc276ef3863d31166bf351321ffcb99909056ee01479791c6c4ae60ad6d26e212e
SSDEEP

3072:nP0IKVF/TyfSt7efDvL+4E4wZw6T6qnHA6frXX1sJq:P0I6byf2efDz+z4wZz6EfD1X

Score

N/A

Malware Config

Signatures

Files

8bfe39a9d2953907a1034f269632b5ba1045d621dadbd69b6fef8e7d727789fc
.exe windows x86

bc5b0042ddc7c15607d7f8269ed594b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
_mbsicmp
rand
_except_handler3
towlower
__set_app_type
exit
_XcptFilter
strtoul
__getmainargs
__setusermatherr
_itoa
_mbsrchr
_dup
_acmdln
printf
vsprintf
__p__commode
_lock
__p__fmode
_exit
sqrt
realloc
malloc
_adjust_fdiv
fgetc

kernel32

GetStartupInfoA
GetModuleHandleA
SetThreadLocale
GetStdHandle
ExitProcess
GetTempPathW
GetTempPathA
GetFullPathNameA
GetSystemTimeAsFileTime
VirtualProtect
GetSystemDirectoryA
GetLocaleInfoA
SetFileTime
SetEnvironmentVariableA
GetVersion
lstrcmpiW

user32

GetWindowRect
GetForegroundWindow
InflateRect
CallNextHookEx
InsertMenuA
SetClipboardData
InsertMenuItemA
GetDlgItem
UpdateWindow
EnumThreadWindows
GetActiveWindow
GetTopWindow
UnhookWindowsHookEx
SetScrollInfo
GetSysColorBrush
IsRectEmpty

oleaut32

VariantClear
SafeArrayPutElement
CreateErrorInfo
SysReAllocStringLen
SysAllocStringByteLen
SysFreeString
GetErrorInfo
SysAllocStringLen
VariantCopyInd
SysStringByteLen
SafeArrayRedim
VariantInit

advapi32

RegEnumValueW
GetSecurityDescriptorDacl
CloseServiceHandle
ControlService
DeregisterEventSource
CheckTokenMembership
RegDeleteKeyA
RevertToSelf
AdjustTokenPrivileges
OpenServiceA
RegEnumValueA
OpenThreadToken

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc5b0042ddc7c15607d7f8269ed594b9

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

oleaut32

advapi32

Sections

.text Size: 56KB - Virtual size: 55KB

.data Size: 16KB - Virtual size: 16KB

.rsrc Size: 33KB - Virtual size: 32KB

.text
Size: 56KB - Virtual size: 55KB

.data
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 33KB - Virtual size: 32KB