3460cafa116ae01fb062f25b0ac1678b48dcf4424a9acbdf77a9421f26405144

General

Target

3460cafa116ae01fb062f25b0ac1678b48dcf4424a9acbdf77a9421f26405144
Size

105KB
MD5

e9aab6f71820e5d3baaa3cb6571cfbb0
SHA1

9291d97fea7a298b8ed7b393315a66ff76dc774e
SHA256

3460cafa116ae01fb062f25b0ac1678b48dcf4424a9acbdf77a9421f26405144
SHA512

4f1191b44c8ae11bb912da1162d4f28c26c0034fd4cc0fc7c023f0d4f44ec89b9fdd73717d7c54ffc4317a00d4be6602085fe673e360f9d09e67e99dc3633f90
SSDEEP

1536:wcUe895bTtftSjn8eXYjl2a5p8ffO4WaRlQpV2gRHNMmMubOgDjqRyUXDyCo9+9N:wc92ZSHY2IyuVfMnEOgDjqRyUXuCU4Jt

Score

N/A

Malware Config

Signatures

Files

3460cafa116ae01fb062f25b0ac1678b48dcf4424a9acbdf77a9421f26405144
.exe windows x86

3236d3f37d0941e91913c9882d8cebf0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
exit
_adjust_fdiv
getenv
__p__fmode
__setusermatherr
_XcptFilter
__getmainargs
_wcsnicmp
longjmp
_mbsrchr
strrchr
_acmdln
strtol
_onexit
_strnicmp
sqrt
strncmp
_initterm
_ftol
_except_handler3
memmove
_exit
_fileno
__set_app_type
_CIpow

kernel32

WritePrivateProfileStringA
VirtualProtect
SetFileTime
GetTempFileNameA
SetLastError
GetConsoleOutputCP
GetStartupInfoA
GetModuleHandleA
GetFullPathNameA
GetLocaleInfoW
SetUnhandledExceptionFilter
ExpandEnvironmentStringsA

user32

GetSysColorBrush
KillTimer
DrawIconEx
PostMessageA
IsDialogMessageA
SetClassLongA
TranslateMessage
DrawEdge
OffsetRect
GetSystemMenu
GetScrollPos
GetWindowThreadProcessId
DestroyIcon
DialogBoxParamA
GetCursorPos
GetScrollInfo
DrawFrameControl
IsChild
GetDCEx
SetScrollPos

oleaut32

SafeArrayRedim
SafeArrayUnaccessData
SysStringByteLen
SafeArrayCreate
SafeArrayPutElement
SysAllocStringLen
GetErrorInfo
GetActiveObject
CreateErrorInfo
SysStringLen
SafeArrayPtrOfIndex
SysAllocStringByteLen
VariantClear

advapi32

SetSecurityDescriptorDacl
InitiateSystemShutdownA
RegOpenKeyA
SetSecurityDescriptorOwner
OpenProcessToken
RegQueryInfoKeyW
RegEnumValueW
CryptGenRandom
GetSecurityDescriptorDacl
RegOpenKeyExW
RegCloseKey
RegEnumValueA
RevertToSelf
RegEnumKeyExW
OpenThreadToken

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3236d3f37d0941e91913c9882d8cebf0

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

oleaut32

advapi32

Sections

.text Size: 57KB - Virtual size: 57KB

.data Size: 17KB - Virtual size: 16KB

.rsrc Size: 29KB - Virtual size: 29KB

.text
Size: 57KB - Virtual size: 57KB

.data
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 29KB - Virtual size: 29KB