794c42e9742e73c90ffeac1ef798565a95816c4ad0562c5c22c98e46a8111bf1

Sharing

Copy URL Twitter E-mail

General

Target

794c42e9742e73c90ffeac1ef798565a95816c4ad0562c5c22c98e46a8111bf1
Size

248KB
MD5

516043c4dcf4f21e501b90a3ac43a9d6
SHA1

e1a21760f060827860e9a77008fd9ba022865f54
SHA256

794c42e9742e73c90ffeac1ef798565a95816c4ad0562c5c22c98e46a8111bf1
SHA512

1c8d4a356c0947d4c3ed076b0179a8344091c12fde9f868fe25039701c5599541bf134d5edab45dbbbc074deab860ebb7884c5817be03698ec19658257666fc0
SSDEEP

3072:DPfbv4XPyRuzbJAabxAo/m5fBg7zE409Id+67PTIKFn54UnO69PW0q4LMhegE:DQuK9AZAFcEN3C6TA1E

Score

N/A

Malware Config

Signatures

Files

794c42e9742e73c90ffeac1ef798565a95816c4ad0562c5c22c98e46a8111bf1
.exe windows x86

fe3e48ecd7cb5c42c503e4676fbe2f68

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
GlobalAlloc
lstrlenA
lstrcmpA
GetPrivateProfileStringA
GetPrivateProfileIntA
WideCharToMultiByte
MultiByteToWideChar
InitializeCriticalSection
GlobalLock
GlobalUnlock
HeapDestroy
GetCurrentProcess
LCMapStringA
FlushInstructionCache
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadCodePtr
VirtualAlloc
WriteFile
IsBadWritePtr
HeapCreate
GetVersionExA
VirtualFree
GetFileType
GetStdHandle
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
SetHandleCount
FreeEnvironmentStringsA
GetModuleFileNameA
FreeEnvironmentStringsW
GetOEMCP
GetACP
UnhandledExceptionFilter
HeapSize
TerminateProcess
GetCPInfo
HeapAlloc
HeapFree
HeapReAlloc
GetVersion
GetCommandLineA
ExitProcess
GetModuleHandleA
RtlUnwind
GetStartupInfoA
CloseHandle
LCMapStringW
GetStringTypeA
GetStringTypeW
GetProcAddress
LoadLibraryA
GetLastError
EnterCriticalSection
ReadFile
SetFilePointer
lstrlenW
SetStdHandle
FlushFileBuffers
DeleteCriticalSection
LeaveCriticalSection

user32

LoadCursorA
UpdateWindow
DispatchMessageA
SetCursor
CharNextA
GetWindowTextA
SetWindowTextA
InvalidateRgn
InvalidateRect
TranslateMessage
GetMessageA
GetWindowTextLengthA
ShowWindow
PostMessageA
wsprintfA
SetCapture
ReleaseCapture
RedrawWindow
CreateAcceleratorTableA
GetDesktopWindow
GetParent
DestroyWindow
IsWindow
GetFocus
GetClassNameA
SetWindowPos
GetDC
GetWindow
SetFocus
GetClientRect
ReleaseDC
BeginPaint
GetDlgItem
FillRect
EndPaint
CallWindowProcA
SendMessageA
GetSysColor
RegisterWindowMessageA
GetWindowLongA
SetWindowLongA
IsChild
GetClassInfoExA
PostQuitMessage
DefWindowProcA
TranslateAcceleratorA
LoadIconA
CreateWindowExA
RegisterClassExA
GetSystemMetrics
LoadAcceleratorsA

gdi32

CreateCompatibleDC
GetDeviceCaps
CreateSolidBrush
DeleteDC
BitBlt
SelectObject
CreateCompatibleBitmap
DeleteObject
GetObjectA
GetStockObject

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

CoTaskMemFree
CreateStreamOnHGlobal
OleLockRunning
CoTaskMemAlloc
StringFromCLSID
CLSIDFromString
OleInitialize
CLSIDFromProgID
CoGetClassObject
CoCreateInstance
OleUninitialize

oleaut32

OleCreateFontIndirect
LoadRegTypeLi
SysStringLen
SysAllocString
SysAllocStringLen
DispCallFunc
VariantClear
SysFreeString

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe3e48ecd7cb5c42c503e4676fbe2f68

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Sections

.text Size: 64KB - Virtual size: 61KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 12KB - Virtual size: 16KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 64KB - Virtual size: 61KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 12KB - Virtual size: 16KB

.rsrc
Size: 4KB - Virtual size: 2KB