84f8dc856fda255f784f9654e39e681fa3c71ec89e604a5a7820e98dadfe9d5d

General

Target

84f8dc856fda255f784f9654e39e681fa3c71ec89e604a5a7820e98dadfe9d5d
Size

72KB
MD5

6445030e52e9d9269817929fd5ddd19d
SHA1

b5c047796de89e81bef14e4e69f7525f04035a4c
SHA256

84f8dc856fda255f784f9654e39e681fa3c71ec89e604a5a7820e98dadfe9d5d
SHA512

fc0ee5a8d65869da89340a549d11de4f525bdfc904810b58917bce7d144ac93b83ede11bb219cf1302a09c53c643adab3a01ffa9b31b4e12e0f4d33be23fe233
SSDEEP

768:BP49NsPlPfBzqX1qNBjU5zvK4yPt+bnn72mIdSuCEhtC:BP6ePlPfwk30jKP0nn7lYtC

Score

N/A

Malware Config

Signatures

Files

84f8dc856fda255f784f9654e39e681fa3c71ec89e604a5a7820e98dadfe9d5d
.exe windows x86

fa8622fb451b8b4e8017d2ca22b67c18

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
lstrcpyA
SetFileAttributesA
lstrlenA
CloseHandle
Process32Next
lstrcmpA
Process32First
CreateToolhelp32Snapshot
CopyFileA
LCMapStringW
LCMapStringA
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
SetEndOfFile
WinExec
GetSystemDirectoryA
GetStringTypeA
GetModuleFileNameA
SetStdHandle
SetUnhandledExceptionFilter
MultiByteToWideChar
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
RaiseException
TerminateProcess
GetCurrentProcess
GetLastError
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
CreateFileA
HeapReAlloc
HeapAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
FlushFileBuffers
VirtualAlloc
IsBadWritePtr
GetStringTypeW

user32

KillTimer
PostQuitMessage
SetTimer
SendMessageA
RegisterClassA
MessageBoxA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA

advapi32

RegSetValueExA
RegCloseKey
RegOpenKeyA

shlwapi

PathFileExistsA

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fa8622fb451b8b4e8017d2ca22b67c18

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shlwapi

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 12KB - Virtual size: 18KB

.sxdata Size: 4KB - Virtual size: 124B

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 12KB - Virtual size: 18KB

.sxdata
Size: 4KB - Virtual size: 124B