d79ffe88f41e98fdf29b6ee747519bb4bd546a572235dfdbd6962311455c6971

Sharing

Copy URL

Twitter E-mail

General

Target

d79ffe88f41e98fdf29b6ee747519bb4bd546a572235dfdbd6962311455c6971
Size

323KB
MD5

f4bf5c28bed38e31c143abfb9bebb6d5
SHA1

015f3e7ce4ff406f712b4ee1c893edfaa9276259
SHA256

d79ffe88f41e98fdf29b6ee747519bb4bd546a572235dfdbd6962311455c6971
SHA512

72e6ed78e42d357447ada178956b9960784fd3cfc0268ede7d4a602e1f789585d90e5ef006070034a7a9b0f35afd39000eb7fa9f6c2d06f4bddce766b85bc935
SSDEEP

6144:G0WZn9P3IGICu40DBjffEskYFQjsOTgbvquvArpuj6YWe/CQimwFFdka+yXu3GBy:G0WZn9P3IGIfNr2Djcb7upuWY7KTPiSE

Score

N/A

Malware Config

Signatures

Files

d79ffe88f41e98fdf29b6ee747519bb4bd546a572235dfdbd6962311455c6971
.exe windows x86

918138a517bbb960904a8cd16cb0f886

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

_stricmp
_strnicmp
__getmainargs
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_isctype
_onexit
_pctype
_setmode
_vsnprintf
abort
atexit
atoi
exit
fclose
fflush
fgetc
fgets
fopen
fprintf
fputc
fputs
fread
free
fwrite
getenv
malloc
memchr
memcpy
memmove
memset
printf
puts
qsort
realloc
remove
signal
sprintf
sscanf
strchr
strcmp
strcpy
strcspn
strftime
strlen
strncat
strncpy
strrchr
strspn
strtok
strtol
strtoul
time
tolower
ungetc
vfprintf

advapi32

GetUserNameA
RegCloseKey
RegCreateKeyA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyA
RegQueryValueExA
RegSetValueExA

kernel32

AllocConsole
ClearCommBreak
CloseHandle
CreateEventA
CreateFileA
CreateFileMappingA
CreatePipe
CreateProcessA
CreateThread
ExitProcess
FindClose
FindFirstFileA
FindNextFileA
FormatMessageA
FreeLibrary
GetCommState
GetConsoleMode
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetEnvironmentVariableA
GetFileType
GetLastError
GetLocalTime
GetOverlappedResult
GetProcAddress
GetProcessTimes
GetStdHandle
GetSystemTime
GetSystemTimeAdjustment
GetThreadTimes
GetTickCount
GetVersionExA
GetWindowsDirectoryA
GlobalMemoryStatus
LoadLibraryA
MapViewOfFile
QueryPerformanceCounter
ReadFile
SetCommBreak
SetCommState
SetCommTimeouts
SetConsoleMode
SetEvent
SetHandleInformation
SetUnhandledExceptionFilter
UnmapViewOfFile
WaitForSingleObject
WriteFile

user32

FindWindowA
GetCapture
GetClipboardOwner
GetCursorPos
GetForegroundWindow
GetQueueStatus
MsgWaitForMultipleObjects
PeekMessageA
PostThreadMessageA
SendMessageA

Sections

.text
Size: 254KB - Virtual size: 253KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

918138a517bbb960904a8cd16cb0f886

Headers

File Characteristics

Imports

msvcrt

advapi32

kernel32

user32

Sections

.text Size: 254KB - Virtual size: 253KB

.data Size: 1024B - Virtual size: 876B

.rdata Size: 57KB - Virtual size: 57KB

.bss Size: - Virtual size: 13KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 254KB - Virtual size: 253KB

.data
Size: 1024B - Virtual size: 876B

.rdata
Size: 57KB - Virtual size: 57KB

.bss
Size: - Virtual size: 13KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 5KB - Virtual size: 5KB