85cca7b52c8ae8041abec00264477b2f02aa3d5ce8115ec321e01c025758a8f3

General

Target

85cca7b52c8ae8041abec00264477b2f02aa3d5ce8115ec321e01c025758a8f3
Size

109KB
MD5

5eeee0387b174030de2f3091cd740665
SHA1

67598bd3cb37a0bfcfcefc380f3ab9643ab1c194
SHA256

85cca7b52c8ae8041abec00264477b2f02aa3d5ce8115ec321e01c025758a8f3
SHA512

71e48413ca291a7aefb949b2f399d8a152f09cb0c9f55b41b4eecb2dfd9ccb92e54fb9305df7702141a1531579d745306417104c6937164448b7cfb5537e623c
SSDEEP

3072:/ckJL1i8fAFzt6YI9sNntetkzgjqieCwqZLM5:/cwYfsYI9mteggjqH9

Score

N/A

Malware Config

Signatures

Files

85cca7b52c8ae8041abec00264477b2f02aa3d5ce8115ec321e01c025758a8f3
.exe windows x86

6cdda183a8b8d7cd31182ce1f44bc851

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

sqrt
exit
_cexit
_dup2
_exit
_initterm
remove
_acmdln
_except_handler3
__p__commode
bsearch
printf
wcschr
__setusermatherr
__p___initenv
wcsncpy
_vsnwprintf
_assert
_mbsrchr
_XcptFilter
rename
__getmainargs
_dup
__p__fmode
_lock
_adjust_fdiv
rand
__set_app_type

kernel32

WideCharToMultiByte
lstrcmpiW
CompareStringW
LCMapStringA
FormatMessageA
CompareFileTime
VirtualProtect
GetModuleHandleA
WaitForMultipleObjects
GetTempPathA
LocalFree
GetStartupInfoA
WriteConsoleA
GetModuleFileNameW
OutputDebugStringA

user32

GetSysColorBrush
LoadCursorA
GetScrollPos
InflateRect
EmptyClipboard
RegisterClipboardFormatA
GetSystemMetrics
SetMenu
GetIconInfo
DefWindowProcA
SetScrollInfo
DrawTextA
wsprintfA
MessageBeep

oleaut32

LoadTypeLib
GetErrorInfo
SafeArrayCreate
SafeArrayUnaccessData
VariantCopy
SysAllocStringLen
SysStringByteLen
SafeArrayPutElement
SysStringLen
VariantClear
SafeArrayGetElement
SetErrorInfo
SysAllocStringByteLen
SysReAllocStringLen
CreateErrorInfo
SysFreeString

advapi32

RegEnumKeyExA
OpenServiceW
LookupPrivilegeValueW
RegOpenKeyExA
CheckTokenMembership
InitializeSecurityDescriptor
RegDeleteKeyW
RegEnumKeyW
FreeSid
RevertToSelf
RegQueryInfoKeyA
OpenThreadToken

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6cdda183a8b8d7cd31182ce1f44bc851

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

oleaut32

advapi32

Sections

.text Size: 57KB - Virtual size: 57KB

.data Size: 17KB - Virtual size: 16KB

.rsrc Size: 33KB - Virtual size: 33KB

.text
Size: 57KB - Virtual size: 57KB

.data
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 33KB - Virtual size: 33KB