ca722c4a0f821c7332bf0fe9bb29a78b5c1e478f3e55de99110849be734bf84a

Sharing

Copy URL Twitter E-mail

General

Target

ca722c4a0f821c7332bf0fe9bb29a78b5c1e478f3e55de99110849be734bf84a
Size

53KB
MD5

d51f047ca99d549ab8b02c2bd13aecb7
SHA1

1bcd94d1f13adfafe1e0b84c861a316a4d77e4f6
SHA256

ca722c4a0f821c7332bf0fe9bb29a78b5c1e478f3e55de99110849be734bf84a
SHA512

58f9b31f8a836e802deb5cd2467d549fd4333f7b1bdb173f221095eb3598851be371d13cdbfc2434fe2e2bf2e591abe4db930605388bcd13686c8cc0c6355502
SSDEEP

1536:jMJTrlkuoND1Q2fUNXbbCcihzH+vFkAAA+:gTrW9lUNrbCcOzHkkAAA+

Score

N/A

Malware Config

Signatures

Files

ca722c4a0f821c7332bf0fe9bb29a78b5c1e478f3e55de99110849be734bf84a
.exe windows x86

f44c2d3a2766ba8625839d5ce26479d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalWire
GetTimeZoneInformation
DeleteFiber
WriteProfileStringW
BindIoCompletionCallback
GlobalUnlock
EnumSystemLanguageGroupsW
LocalAlloc
BackupRead
SetConsoleIcon
GetSystemTimeAsFileTime
LoadLibraryExW
GetStartupInfoA
FatalExit
GetVolumePathNameW
VerifyVersionInfoA
CreateMutexA
GetFileAttributesW
TerminateThread
LoadResource
GetConsoleInputExeNameA
LoadLibraryA
QueryInformationJobObject
BaseFlushAppcompatCache
GetPriorityClass
IsValidCodePage

comctl32

DrawStatusText
MenuHelp
ImageList_Write
ImageList_SetImageCount

oleacc

AccessibleChildren
LIBID_Accessibility
GetStateTextW
IID_IAccessibleHandler
AccessibleObjectFromEvent
GetRoleTextW
ObjectFromLresult
WindowFromAccessibleObject
GetOleaccVersionInfo
CreateStdAccessibleProxyA
IID_IAccessible
CreateStdAccessibleProxyW
LresultFromObject

msvcrt

__isascii
_scprintf
__argv
mktime
tolower
asctime
__set_app_type
_execlp
exit
_get_osfhandle
__p__commode
strftime
_mbctokata
_execl
??8type_info@@QBEHABV0@@Z
_wspawnlpe
__getmainargs
atoi
_wpopen
_getdrive

ntdll

NtWriteFileGather
RtlGetDaclSecurityDescriptor
RtlOemStringToUnicodeSize
ZwInitializeRegistry
RtlpNtMakeTemporaryKey
RtlSetEnvironmentVariable
NtIsSystemResumeAutomatic
ZwCreateNamedPipeFile
LdrGetProcedureAddress
NtEnumerateBootEntries
NtOpenIoCompletion
LdrFindResource_U
NtDuplicateToken

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f44c2d3a2766ba8625839d5ce26479d4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

oleacc

msvcrt

ntdll

Sections

.text Size: 38KB - Virtual size: 38KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 38KB - Virtual size: 38KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 8KB