580731f045c7d5adaa6812e58f596cc94908bbb7f8b2f4a7c9c1bfb3b6674b12

General

Target

580731f045c7d5adaa6812e58f596cc94908bbb7f8b2f4a7c9c1bfb3b6674b12
Size

539KB
MD5

106617f1a77f37544ccd4c827b0f3780
SHA1

17b72ca20ce21a56eaf03588d28f678ed11b23b7
SHA256

580731f045c7d5adaa6812e58f596cc94908bbb7f8b2f4a7c9c1bfb3b6674b12
SHA512

2ed003c3fa275c07176f43949cc10d311cbda11b3b6ea4ed9988841e051b274755350024129e76a9552b9ed83489f1f50f425b40a1cae62c03ed7c9c083cd327
SSDEEP

12288:xTKJ60JcfH5+YLT1EqdEdWiwPBC6qiRcme0iR5sqyELrPkKY/oNJ2yCcOJMYOee2:YrsZ3LT1EqdEdWiwPBC6qiRmkoBSZ

Score

N/A

Malware Config

Signatures

Files

580731f045c7d5adaa6812e58f596cc94908bbb7f8b2f4a7c9c1bfb3b6674b12
.exe windows x86

01d5ae27972e7d8f59c33ed9e9f55a46

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalUnlock
_lclose
lstrlenA
_lread
GlobalAlloc
_lopen
lstrcpyA
GlobalLock
GetModuleHandleA
HeapAlloc
GetModuleFileNameA
LCMapStringW
LCMapStringA
VirtualAlloc
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
LoadLibraryA
GetProcAddress
GetStringTypeW
GetStringTypeA
GetFileAttributesA
_llseek
GetShortPathNameA
GetFileType
GetCurrentProcess
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
MultiByteToWideChar
FreeEnvironmentStringsA
TerminateProcess
GetEnvironmentStrings
UnhandledExceptionFilter
SetHandleCount
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP

user32

DialogBoxParamA
CreateWindowExA
CallWindowProcA
EndDialog
GetWindowTextA
SetWindowTextA
GetDlgItem
GetWindowLongA
SetWindowLongA
DefWindowProcA
RegisterClassA
ShowWindow
PostQuitMessage

hpfinst

_InitProcessStrings@0
_DeInitProcess@12
_ProcessExpandString@16
_OutputToLogFile@4
_InitProcess@8
_GetProcessString@16
_SetProcessString@8
_Process@8

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 500KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

01d5ae27972e7d8f59c33ed9e9f55a46

Headers

File Characteristics

Imports

kernel32

user32

hpfinst

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 10KB - Virtual size: 14KB

.rsrc Size: 12KB - Virtual size: 11KB

.vmp0 Size: 500KB - Virtual size: 1.6MB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 10KB - Virtual size: 14KB

.rsrc
Size: 12KB - Virtual size: 11KB

.vmp0
Size: 500KB - Virtual size: 1.6MB