8f5f65a700c03dfdf8e90533e9fb57c873c795aa24f3f324591663b0b0d99661

General

Target

8f5f65a700c03dfdf8e90533e9fb57c873c795aa24f3f324591663b0b0d99661
Size

858KB
MD5

6589c0f8ba704085ca35fc65bf713066
SHA1

38c935d3da6f508ddf80b6e2ef342f9e48ccc6c5
SHA256

8f5f65a700c03dfdf8e90533e9fb57c873c795aa24f3f324591663b0b0d99661
SHA512

444a62155b79c5f6dda3fcedfe1b6de8796ad5f4dcbbbdcc30e612e5daff14e5d2541c8b2f9f8c63d51951b2af8c947427646fd020259aec08990acb84a78248
SSDEEP

24576:/bVrUWdAnNtBV0LqBNHfqXgmoY18B6vmpsjGOT:DVr1WNOwNHfWxoY29cGO

Score

N/A

Malware Config

Signatures

Files

8f5f65a700c03dfdf8e90533e9fb57c873c795aa24f3f324591663b0b0d99661
.exe windows x86

44e5576254450efafaa9fc995e7321fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetSystemDefaultLCID
GetCommandLineW
VirtualFree
SetHandleCount
HeapReAlloc
GetVersion
FormatMessageW
VirtualAlloc
lstrcpyW
DeleteFileW
GetTickCount
WriteFile
lstrcpynW
OpenProcess
EnterCriticalSection
HeapCreate
GetCurrentThreadId
DeleteCriticalSection
CreateFileMappingW
GetConsoleCP
LoadLibraryA
GetCurrentProcess
lstrcmpiA
GetStartupInfoA
SearchPathW
InterlockedDecrement
CloseHandle
GetSystemTimeAsFileTime
GetTempFileNameW
lstrcpyA

msvcrt

exit
__getmainargs
_exit
qsort
_callnewh
_onexit
wcsstr
__p__commode
_unlock
fclose
__set_app_type

user32

GetMenuItemCount
IsWindowVisible
GetDlgCtrlID
UnregisterClassW
EqualRect
LoadImageW
LoadBitmapA
SendMessageW
LoadIconW
SendMessageA
DispatchMessageW
BringWindowToTop
GetPropA
CopyRect
IsDlgButtonChecked
CreateWindowExW
SetPropW
CheckMenuItem
GetForegroundWindow

advapi32

RegDeleteValueW
RegQueryValueExW
GetTokenInformation
CryptAcquireContextW

Sections

.text
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 502KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44e5576254450efafaa9fc995e7321fa

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

Sections

.text Size: 167KB - Virtual size: 167KB

.rdata Size: 183KB - Virtual size: 183KB

.data Size: 502KB - Virtual size: 1.9MB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 167KB - Virtual size: 167KB

.rdata
Size: 183KB - Virtual size: 183KB

.data
Size: 502KB - Virtual size: 1.9MB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 1024B - Virtual size: 1024B