a1804ef7dc30d09fc318f11faf4786688cd85201b26c6c79043704c2ff874e83

General

Target

a1804ef7dc30d09fc318f11faf4786688cd85201b26c6c79043704c2ff874e83
Size

32KB
MD5

f86cee1ad6415383eaab8ecd57acff31
SHA1

326cb60ddd0207a4acd3bce559b816628db807d1
SHA256

a1804ef7dc30d09fc318f11faf4786688cd85201b26c6c79043704c2ff874e83
SHA512

e583499f35b9e6fbe1b92d0cf0522abdf84c656395d1d0b385f62e0a8baf01ed7c70193ea2638cc29dc8ffe7fc261635d5e83f72d9fc1bd18089bc09fd41fda2
SSDEEP

384:DZ++c8zZ1y6/qzOJzEi4CIBvKU5TY6Sz480w81gsRlt2Wy+ixcX7VYo:Fd1yQqzIzEiWBvx3rlt7V7r

Score

N/A

Malware Config

Signatures

Files

a1804ef7dc30d09fc318f11faf4786688cd85201b26c6c79043704c2ff874e83
.exe windows x86

720bce0c0c710edee685e8694185abe8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
CharLowerA
IsWindow
SendMessageA
FindWindowExA
FindWindowA

oleaut32

VariantClear
SysFreeString
SysAllocString

msvcrt

__dllonexit
_onexit
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__set_app_type
_controlfp
wcslen
_except_handler3
strcat
rand
strstr
memcpy
_vsnprintf
strcmp
strtok
srand
strncpy
memcmp
strlen
_snprintf
memset
atoi
strchr
strcpy
??2@YAPAXI@Z
__CxxFrameHandler
malloc
sprintf
realloc
free
_stricmp
_strrev
__p__fmode

kernel32

lstrlenA
GetStartupInfoA
WideCharToMultiByte
MultiByteToWideChar
TerminateThread
GetTempPathA
CreateFileA
WriteFile
GetWindowsDirectoryA
SetFileAttributesA
GetFileAttributesA
CreateMutexA
GetTickCount
ReleaseMutex
ExitThread
GetCurrentProcess
CloseHandle
LoadLibraryA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
ExpandEnvironmentStringsA
CreateProcessA
WaitForSingleObject
lstrcmpiA
Sleep
CreateThread
GetLastError
InterlockedDecrement
ExitProcess

advapi32

RegDeleteValueA
RegQueryValueExA
RegSetValueExA
GetUserNameA
RegCloseKey
RegCreateKeyExA

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

720bce0c0c710edee685e8694185abe8

Headers

File Characteristics

Imports

user32

oleaut32

msvcrt

kernel32

advapi32

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 275KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 275KB