9d933323054f9436661a0a6757581c0554decdecc2195c65bb07a5f91bf09544

General

Target

9d933323054f9436661a0a6757581c0554decdecc2195c65bb07a5f91bf09544
Size

59KB
MD5

ecb7bb22fe60e8a548dd61ee7e846ce4
SHA1

81f727956331f0bfd1fcd841a19520fc5261dda5
SHA256

9d933323054f9436661a0a6757581c0554decdecc2195c65bb07a5f91bf09544
SHA512

a658244833d3a9ef55ca3dd79adb9ee0d282748e108518be324103dc4a64ba7cb8be57426f59db79ce9208ad3c52c387eabb3971388b7731b33a346b7ac266f2
SSDEEP

1536:S/dTKTWW3YbzLrOUcyo0a5//y5BnJAGV:SVKaLPc/5K9JAGV

Score

N/A

Malware Config

Signatures

Files

9d933323054f9436661a0a6757581c0554decdecc2195c65bb07a5f91bf09544
.exe windows x86

5eada9f25437de61c1e4c76a22a8cb4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
OpenProcess
CloseHandle
SetThreadContext
SuspendThread
Sleep
ResumeThread
WriteProcessMemory
VirtualProtectEx
GetThreadContext
ExitProcess
GetExitCodeThread
WaitForSingleObject
CreateRemoteThread
GetVersion
LoadLibraryA
FindFirstFileA
GetWindowsDirectoryA
ReadProcessMemory
TerminateProcess
CreateProcessA
SetCurrentDirectoryA
DeleteFileA
GetModuleFileNameA
SizeofResource
LockResource
LoadResource
FindResourceA
GetTempPathA
CopyFileA
GetSystemDirectoryA
HeapSize
SetEndOfFile
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GlobalFree
GetModuleHandleA
SetFileAttributesA
GetProcAddress
GetStartupInfoA
GetCommandLineA
GetVersionExA
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
GetLastError
LCMapStringW
HeapFree
WriteFile
GetCurrentProcess
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetLocaleInfoA
GetCPInfo
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStringTypeA
GetStringTypeW
ReadFile
HeapReAlloc
SetStdHandle
FlushFileBuffers
SetFilePointer
CreateFileA
GetACP
GetOEMCP
QueryPerformanceCounter
GetTickCount
RtlUnwind

user32

MessageBoxA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5eada9f25437de61c1e4c76a22a8cb4b

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

Sections

.text Size: 27KB - Virtual size: 26KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 2KB - Virtual size: 9KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 27KB - Virtual size: 26KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 2KB - Virtual size: 9KB

.rsrc
Size: 23KB - Virtual size: 22KB