ba631837c1b8629d55f7c1ee5de36bf5487a1a79b7a931d1f91dac522a5ce14a

General

Target

ba631837c1b8629d55f7c1ee5de36bf5487a1a79b7a931d1f91dac522a5ce14a
Size

88KB
MD5

1f6ff2e68e2aed838fc5ee2d2af22d31
SHA1

8452c2c76025b5a1a715fab4692cc270065771a1
SHA256

ba631837c1b8629d55f7c1ee5de36bf5487a1a79b7a931d1f91dac522a5ce14a
SHA512

893f91793dff12b0f50c52d65f4b8d70f2ecb7ef9824c0b8464aef1ecb0dce846a85d10d4a469379bbb558b50cb8ae613388009a61f8f290dce9558b6b4e98ed
SSDEEP

1536:MDc4BAxQyRraAWs9nStSY1P7kEM5/TZkuRN/IlC59xGsbtz:KcLxfPWwZY1P7ZM4WN/IlCgs1

Score

N/A

Malware Config

Signatures

Files

ba631837c1b8629d55f7c1ee5de36bf5487a1a79b7a931d1f91dac522a5ce14a
.exe windows x86

4448c316425d5e7233080316e8e21f0f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW
RegQueryValueExA
RegQueryInfoKeyA
RegFlushKey
RegCreateKeyExA
RegEnumKeyExW
RegLoadKeyA
RegCreateKeyW
RegDeleteValueW
RegEnumKeyExA
RegEnumKeyA
RegOpenKeyExA
RegReplaceKeyW
RegGetKeySecurity
RegQueryValueA
RegQueryValueW
RegDeleteKeyA
RegOpenKeyExW
RegDeleteValueA

user32

BlockInput
DrawIconEx
AppendMenuW
DrawTextA
EndDialog
LoadCursorA
GetDlgItem
AppendMenuA
CopyIcon
GetFocus
IsMenu
GetMenu
CalcMenuBar
CopyImage
DrawTextW
CloseWindow

comctl32

ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_DragMove
ImageList_GetImageRect
ImageList_DrawEx
ImageList_Create
ImageList_AddIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Read
ImageList_Destroy
ImageList_EndDrag
ImageList_GetIcon
ImageList_Merge
ImageList_LoadImage
ImageList_Remove
ImageList_Replace

kernel32

GetFileSize
HeapAlloc
GetStdHandle
GetDateFormatA
lstrcpyA
lstrcmpiA
GetFileAttributesA
SetLastError
HeapFree
GetCPInfo
GetModuleHandleA
GlobalFree
GetCommandLineA
lstrcmpA
GetLocalTime
GetLastError
lstrcatA
GetStringTypeA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4448c316425d5e7233080316e8e21f0f

Headers

File Characteristics

Imports

advapi32

user32

comctl32

kernel32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 68KB - Virtual size: 170KB

.reloc Size: - Virtual size: 416B

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 68KB - Virtual size: 170KB

.reloc
Size: - Virtual size: 416B

.rsrc
Size: 4KB - Virtual size: 1KB