f8c8e881ea7a124cf21ad2d60a8d0fdb9c7a29d45f147af7e4f84b99372cc7ba

General

Target

f8c8e881ea7a124cf21ad2d60a8d0fdb9c7a29d45f147af7e4f84b99372cc7ba
Size

64KB
MD5

f8415eb8787e8da8cc20bdbd326077c1
SHA1

6e04dc7ba814155cf3b67fe55ecd39bdd4147071
SHA256

f8c8e881ea7a124cf21ad2d60a8d0fdb9c7a29d45f147af7e4f84b99372cc7ba
SHA512

d4b5e0c413ec97094195deb0a9d0eec8826a9705188d6b657247148d5c7636ea94524c33ec340a364b5344fa7abf2d9e46caa76113a93df530230ea0cc618c1f
SSDEEP

768:RvqGC93BsDWUoP0q7DbIqY6KCv8MvfdQX4u1wi1GsPPD5CJMFj0n5tz9WfeO:FqGIBsVi0kIqZUMv+XPwi1Gsj5Kvz96

Score

N/A

Malware Config

Signatures

Files

f8c8e881ea7a124cf21ad2d60a8d0fdb9c7a29d45f147af7e4f84b99372cc7ba
.exe windows x86

e6a184a19df0ec53ded576329a31888c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DuplicateHandle
ExitProcess
GetBinaryTypeA
GetCommandLineA
GetCurrentProcess
GetDriveTypeA
GetFileAttributesA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetTickCount
GetVolumeInformationA
CreateProcessA
GlobalFree
OpenProcess
ReadFile
ResumeThread
SetEvent
SetFilePointer
SetLastError
TerminateProcess
WaitForSingleObject
HeapCreate
HeapAlloc
CreatePipe
CreateFileA
RaiseException
CreateEventA
GlobalAlloc
CloseHandle
WriteProcessMemory
VirtualAlloc
VirtualFree
WriteFile
GetTempPathA
CreateDirectoryA
ExpandEnvironmentStringsA
GetThreadContext
SetThreadContext
CreateThread
GetVersionExA
GetProcAddress
LoadLibraryA
HeapFree

user32

TranslateMessage
SendMessageA
RegisterClassA
PostMessageA
PeekMessageA
GetMessageA
DispatchMessageA
CreateWindowExA
DefWindowProcA
MessageBoxA

advapi32

RegCloseKey
RegQueryValueExA
RegEnumKeyA
RegOpenKeyExA

ole32

CoTaskMemFree

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6a184a19df0ec53ded576329a31888c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

shell32

Sections

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 22KB - Virtual size: 26KB

.rsrc Size: 82KB - Virtual size: 81KB

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 22KB - Virtual size: 26KB

.rsrc
Size: 82KB - Virtual size: 81KB