fc72e7125ff5bbdc6807410d0d5134200c772176f8f5481c0bc657ccc0d57be9

Sharing

Copy URL Twitter E-mail

General

Target

fc72e7125ff5bbdc6807410d0d5134200c772176f8f5481c0bc657ccc0d57be9
Size

128KB
MD5

2b0f8e83262f3873e0a1367e51f00f30
SHA1

75261ba2e58e1a8450a08df1c11f1dd5eec91004
SHA256

fc72e7125ff5bbdc6807410d0d5134200c772176f8f5481c0bc657ccc0d57be9
SHA512

4d3913d10c643435aa1fc6b037d33778dae86ae5645e64c0b8e402dcd903adbad1ceda6e3a53370f69a18372044bd153da548f6792de3ff735423e51980a16b9
SSDEEP

3072:YI6Sn3qehsBNyGKgWnDZoA6SDADeak7dJHB/AdGm:YIYeKB0GkcSsQLH5Ad1

Score

N/A

Malware Config

Signatures

Files

fc72e7125ff5bbdc6807410d0d5134200c772176f8f5481c0bc657ccc0d57be9
.exe windows x86

66e85611d39d95ca8258621db2453dec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
CompareStringW
CompareStringA
ReadFile
SetEndOfFile
GetLocaleInfoW
CreateFileA
FlushFileBuffers
SetStdHandle
SetFilePointer
HeapReAlloc
VirtualAlloc
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
WriteFile
GetPrivateProfileIntA
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetOEMCP
GetACP
CloseHandle
WideCharToMultiByte
GetVersionExA
GetUserDefaultLCID
EnumSystemLocalesA
LoadLibraryA
GetProcAddress
LocalFree
FreeLibrary
CreateMutexA
GetLastError
RtlUnwind
ReleaseMutex
GetLocaleInfoA
SetEnvironmentVariableA
IsValidCodePage
IsValidLocale
ExitProcess
TerminateProcess
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
GetCPInfo
HeapFree
HeapAlloc

user32

IsWindow
LoadImageA
DestroyIcon
EndDialog
GetParent
GetWindowRect
MoveWindow
GetDlgItem
SetWindowTextA
SendMessageA
PostQuitMessage
SetForegroundWindow
MessageBoxA
DefWindowProcA
LoadMenuA
GetSubMenu
GetCursorPos
EnableMenuItem
TrackPopupMenu
DestroyMenu
DialogBoxParamA
KillTimer
CreateWindowExA
ShowWindow
UpdateWindow
SetTimer
PostMessageA
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
RegisterWindowMessageA
IsWindowVisible

advapi32

LookupAccountNameA
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
RegSetValueExA
GetUserNameA

shell32

SHGetSpecialFolderPathA
ShellExecuteA
Shell_NotifyIconA

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66e85611d39d95ca8258621db2453dec

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 16KB - Virtual size: 21KB

.rsrc Size: 48KB - Virtual size: 45KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 16KB - Virtual size: 21KB

.rsrc
Size: 48KB - Virtual size: 45KB