d603ae6ead6d5d4cb3873e9be1529e476472f59b387c5a41267eed72f2c1bbdb

General

Target

d603ae6ead6d5d4cb3873e9be1529e476472f59b387c5a41267eed72f2c1bbdb
Size

96KB
MD5

0d48a72fc91ce517f8d13a0ad0b9f690
SHA1

dcb15ab24d736ab0e8c67d7760ee93f9d21bfc4a
SHA256

d603ae6ead6d5d4cb3873e9be1529e476472f59b387c5a41267eed72f2c1bbdb
SHA512

69c5bfa079bf54fdfe161bfe9858e34d0500877fcaa3ba707fb7c2f3439bf78952357bb099fc063978142f1c2f80800099e34b5d30633ab569f74643d450d4a6
SSDEEP

1536:I7tQt8+PHivbIlJFlm4GGm8h3YW94zo2158oNlVC/8wo:Ig8+PHF9lmSme43sS

Score

N/A

Malware Config

Signatures

Files

d603ae6ead6d5d4cb3873e9be1529e476472f59b387c5a41267eed72f2c1bbdb
.exe windows x86

9f6d911a0d652b428a3e5fd343f4a4ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GlobalFree
FindResourceW
CreateProcessW
GlobalLock
SetCurrentDirectoryW
LoadResource
LoadLibraryW
FindNextFileW
GetModuleHandleW
GetFileAttributesW
GetCurrentThread
WriteFile
LoadLibraryA
GetPrivateProfileStringW
SetLastError
ReadProcessMemory
CreateEventW
GetProcAddress
GlobalAddAtomW
FindResourceExW
FileTimeToSystemTime
InterlockedIncrement
FreeResource
QueryDosDeviceW
WaitForMultipleObjects
TerminateThread
SetEndOfFile
lstrcpyW
GetFileAttributesExW

user32

RegisterClassExW
LoadStringW
GetKeyState
DispatchMessageW
UpdateWindow
SetForegroundWindow
SendDlgItemMessageW
VkKeyScanW
PostQuitMessage
SetCursor
IsWindow
PostThreadMessageW
AppendMenuW
SetCapture
DrawTextW
TrackPopupMenu

gdi32

GetMapMode
SetDIBits
LineTo
CreateDCW
DeleteObject
CreateFontIndirectW
Rectangle
GetObjectW
GetClipBox

advapi32

LookupAccountSidW
RegQueryValueExW
StartServiceW
InitializeSecurityDescriptor

Sections

.gbcs
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cdeq
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aqbd
Size: 4KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9f6d911a0d652b428a3e5fd343f4a4ce

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.gbcs Size: 84KB - Virtual size: 80KB

.cdeq Size: 4KB - Virtual size: 1KB

.aqbd Size: 4KB - Virtual size: 22KB

.gbcs
Size: 84KB - Virtual size: 80KB

.cdeq
Size: 4KB - Virtual size: 1KB

.aqbd
Size: 4KB - Virtual size: 22KB